Each instance needs access to a XXXXXX Directory Server instance to store requests and records. Each PKI instance may create its own associated internal database, or may share an existing internal database. To share an existing internal database instance, a PKI instance would only need to establish a unique distinguished name (DN) using the field entitled Base DN and a unique database name using the field entitled Database.
+#if ($clone == "clone")
+
+If the replication between the masters and clones occurs on the non-SSL port, it is still possible to require the replication to be SSL encrypted by selecting Use StartTLS with replication agreements below. In order for this operation to be successful, the database instances must be SSL enabled before continuing beyond this panel.
+#end
Note: If the XXXXXX Directory Server is at a remote host, it is highly recommended that SSL should be used.
@@ -88,6 +92,9 @@
+#if ($clone == "clone")
+ Use StartTLS with replication agreements.
+#end
Remove the existing data from the Base DN shown above.