CRL over LDAP : Différence entre versions
De Trustedbird Client Wiki
(Page créée avec « {{lang|CRL over LDAP|CRL over LDAP|/fr}} > Documentation > Add-on: CRL over LDAP > Technical Documentation {{D… ») |
|||
| Ligne 1 : | Ligne 1 : | ||
| − | {{lang|CRL over LDAP|CRL over LDAP |
+ | {{lang|CRL over LDAP|CRL over LDAP/fr}} |
> [[Documentation]] > [[CRL over LDAP|Add-on: CRL over LDAP]] > [[CRL over LDAP Technical Documentation|Technical Documentation]] |
> [[Documentation]] > [[CRL over LDAP|Add-on: CRL over LDAP]] > [[CRL over LDAP Technical Documentation|Technical Documentation]] |
||
{{DownloadPanelAmo |
{{DownloadPanelAmo |
||
Version du 3 septembre 2010 à 15:32
English | Français
> Documentation > Add-on: CRL over LDAP > Technical Documentation
CRL over LDAP is an add-on for Mozilla Thunderbird 2 and 3 which allows import of Certificate Revocation Lists (CRL) from LDAP directories.
It adds the support feature of LDAP URLs in the import window of the CRL manager and schedules auto-updates of these CRLs.
Additional resources:
Important information
- CRL auto-update from HTTP/FTP (integrated in Thunderbird) and LDAP (with this add-on) is broken due to NSS bug #371522. A fix has been proposed and accepted and is now integrated in NSS. Thunderbird, since version 2.0.0.23, and Trustedbird (Thunderbird with additional features) are available with a fixed auto-update feature. This CRL over LDAP add-on provides also a workaround for this bug, working with all versions of Thunderbird (for HTTP/FTP and LDAP URLs).
- CRL manager window is not refreshed when a CRL is imported: #104137.
- LDAP authentication is not supported.
Usage
The CRL must be stored in DER format in a LDAP attribute value.
In the import window of the CRL manager, provide a LDAP URL following this syntax:
- ldap://host:port/dn?attribute?scope?filter?extensions
- e.g.: ldap://10.1.2.3/dc=milimail,dc=org?certificateRevocationList;binary?sub?cn=crl
