Differences

This shows you the differences between two versions of the page.

--- middleware:ed:edauth:usage [2009/10/07 17:17]
127.0.0.1 external edit
+++ middleware:ed:edauth:usage [2009/10/14 11:18] (current)
dhawes change link for the cachain
@@ Line 453: / Line 453: @@
    * Notes:  * You must have imported the VTCA chain into the
    *           Windows keystore before this code will work properly.
-   *           This is available at https://vtmwra.eprov.iad.vt.edu/cacert,
+   *           This is available at http://www.pki.vt.edu/developer/rootca.html,
    *           or click on "immediate installation" and run the .exe at
    *           http://www.pki.vt.edu/download/ie6.html.  This will
@@ Line 949: / Line 949: @@
 require valid-user
 </code>
-. Download the [[https://vtmwra.eprov.iad.vt.edu/cacert/cachain.pem|VT CA Chain]] from the [[https://vtmwra.eprov.iad.vt.edu/|VT Middleware CA]]. \\ \\
+. Download the [[pubs>vt-cachain.pem|VT CA Chain]], also available from [[http://www.pki.vt.edu/developer/rootca.html|VT Middleware CA]]. \\ \\
 . Add the following line to your ldap.conf file, usually found at $OPENLDAP_HOME/etc/openldap/ldap.conf
  (see [[middleware:ed:edauth:usage#AppendixOpenLDAP_and_Certificates|Appendix: OpenLDAP and Certificates]] for more ways to set up your trusted certificates):
@@ Line 1149: / Line 1149: @@
 tls_cacertfile /path/to/cachain.pem
 </code>
-.  Download [[https://vtmwra.eprov.iad.vt.edu/cacert/cachain.pem|cachain.pem]] and put the file in the location you specified in step 3. \\ \\
+.  Download [[pubs>vt-cachain.pem|vt-cachain.pem]] and put the file in the location you specified in step 3. \\ \\
 .  ''man pam'' and read up about the ''pam.conf'' configuration file, pam.d, and services.  \\ \\
 .  Modify your service rules in ''/etc/pam.d'' accordingly, making sure the rules do what you think they do (!!!).  (hint:  the ''pam.d'' directory that comes with the pam_ldap distribution is a good place to look at rules.  The ''login'' rules file works well.)
@@ Line 1173: / Line 1173: @@
 ED-ID).  These directives can be set up in the following ways:
-[[https://vtmwra.eprov.iad.vt.edu/cacert/cachain.pem|Download the VT Middeware CA chain file]]
+[[pubs>/vt-cachain.pem|Download the VT Middeware CA chain file]]
 . Add the following to the OpenLDAP library's ''ldap.conf''.  This must be the
@@ Line 1249: / Line 1249: @@
 TLS_CACERT c:\OpenLDAP\sysconf\certs\cachain.pem
 </code>
-Next, place the [[https://vtmwra.eprov.iad.vt.edu/cacert/cachain.pem|VT CA Chain]] in the
+Next, place the [[pubs>/vt-cachain.pem|VT CA Chain]] in the
 <code>
 c:\OpenLDAP\sysconf\certs\
@@ Line 1279: / Line 1279: @@
 ===== Appendix:  Resources =====
   * [[middleware:ed:edauth:schema|ED-Auth Schema]]
-  * [[https://vtmwra.eprov.iad.vt.edu/cacert/cachain.pem|Virginia Tech Middleware Certificate Chain]]
+  * [[pubs>vt-cachain.pem|Virginia Tech Middleware Certificate Chain]]
+  * [[http://www.pki.vt.edu/developer/rootca.html|Virginia Tech CA Certificates Download Page]]
   * [[middleware:ed:affiliations|Person Affiliations Explained]]
   * [[middleware:ed:edldap|Middleware LDAP Libraries]]