On 9/12/24 4:08 PM, Quanah Gibson-Mount wrote:
--On Thursday, September 12, 2024 2:07 PM -0700 Quanah Gibson-Mount quanah@fast-mail.org wrote:
--On Thursday, September 12, 2024 12:39 PM -0400 Brendan Kearney bpk678@gmail.com wrote:
list members,
i have a multi-provider footprint that i want to remove the AutoCA functionality from. when i loaded the overlay, i set it to disabled, per the below:
- ldapdelete the objects in the binary database that were created by
autoca 2) ldapdelete the autoca overlay from the config db
I'd test that in a test environment first, but in theory it should work fine.
- Assuming a current release of OpenLDAP.
--Quanah
i am running 2.6.6, which should be pretty recent. 2.6.7 seems to be the latest available.
sadly, my command-line-fu is lacking and most of the tools i use will not work (they all crash and cannot enumerate the base of dc=bpk2,dc=com). i am trying:
ldapdelete "cACertificate;binary,dc=bpk2,dc=com" and ldapdelete "cACertificate,dc=bpk2,dc=com"
but both attempts return:
ldap_delete: Invalid DN syntax (34) additional info: invalid DN
the structure looks like this:
dc=bpk2,dc=com dc: bpk2 o: BPK2.com objectClass: dcObject objectClass: organization objectClass: top objectClass: autoCA cACertificate;binary:: MII... cAPrivateKey;binary:: MII...
what would be the proper syntax to delete the cACertificate, cAPrivateKey objects and autoCA objectClass?
thanks for tolerating my neophyte level ignorance,
brendan