OpenLDAP and TLS-SSL
hi guys
I configured my openldap but now I want to implement SSL-TLS This is my basic slapd.conf configuration Code:
include /etc/openldap/schema/core.schema path when I am moving certs /etc/openldap/cacerts Code:
service ldap stop On client side I use authconfig-tui [x] Use LDAP [x] Use LDAP Authentication [x] Use TLS Server: ldap://192.168.x.x Base DN: dc=training,dc=com/ My enviroment is Centos 5.5 what is wrong on my config? any idea? Something I am missing? thanks a lot |
You have to add the following lines to slapd.conf
Code:
TLSCACertificateFile server.pem On the client side you also need to setup the certifcate, if I remember well. Edit: Sorry missed the echo part in your script. I am not sure, but I think you add these lines at the wrong place in the file. Some things in slapd.conf have a different meaning when they are located at a different place. The best place to put these lines is before the database parameter. Edit2: in ldap.conf (be aware there are 2 and each has a different meaning, so linking will not work) of the client you need to add to the correct parameter the certificate file. |
1 Attachment(s)
I am including a new configuration in a PDF
so you can take a look (attached) thanks a lot |
It looks okay, but it is easy to test by setting up the ldap client tools.
|
Quote:
|
Quote:
Code:
ldapsearch -x -ZZ -W -d 'dn-of-your-user' The file you configure with authconfig-tui is /etc/ldap.conf. Be aware that these files are NOT the same. You probably have to setup /etc/ldap/ldap.conf manually. |
All times are GMT -5. The time now is 04:33 AM. |