Aleksandar Karalejić wrote:
Hi Howard,
Is there any way discard sending private key (or keeping it in the file) on
the file system.
The private key is not sent anywhere.
Can you explain why is private key needed for certificate
based authentication?
Read up on how public-key cryptography works. That is not anything specific to
OpenLDAP.
The private key is required to prove that you are the owner of the certificate
being used.
--
-- Howard Chu
CTO, Symas Corp.
http://www.symas.com
Director, Highland Sun
http://highlandsun.com/hyc/
Chief Architect, OpenLDAP
http://www.openldap.org/project/