> On 23 May 2019, at 04:15, Angel Bosch <abosch@ticmallorca.net> wrote:
>
> Hi again,
>
>
> continuing with my automation I'm facing now the problem of SSL configuration.
>
> Using certificates at LB level is not recommended acording to https://directory.fedoraproject.org/docs/389ds/howto/howto-ssl.html
> sharing keys is also discouraged, so my question is if there is a way to prepopulate NSS database with a predefined cert to fast deploy an instance.
>
> I my planned setup I'll have 2 masters and 2 to 10 slaves/consumers (maybe more).
> It will be extremely rare to stop or reinstall masters, but with consumers I want the flexibility to create and destroy them at any moment.
>
> Is there any best practice here?
I think to answer this, I'd like to see a diagram or description of the network and deployment topology you have in mind to help advise for what you want to achieve here :)
>
> abosch
>
>
>
> --
> _______________________________________________
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
—
Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server
SUSE Labs
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
No comments:
Post a Comment