Install LDAP / Any Server Certificates

Below are the steps to add LDAP certificates to a new server

Steps

  1. Copy CA.b64 and CA_PROXY_TREE.b64 in /etc/ldap/cacerts. Create folder if necessary

    mkdir -pv /etc/ldap/cacerts
cd /etc/ldap/cacerts
scp cms9:/etc/ldap/cacerts/CA* .

  2. Edit /etc/ldap/ldap.conf and add the following lines:

    TLS_CACERT      /etc/ldap/cacerts/CA_PROXY_TREE.b64
URI             ldaps://ldap.example.com:636

  3. Try whether the following command succeds:

    ldapsearch -H ldaps://ldap.example.com:636 -x cn=prabin

  4. Check the permission of /etc/ldap/cacerts folder. It should have executable bit

Proverb

A journey of a thousand miles begins with a single step

Copyright

Copyright © Prabin Dahal 2022. This website is made using TYPO3. Visit http://typo3.org for more details.

Disclaimer

Please see the disclaimer page.

Mastodon @prabin