AIX LDAP client authenticate against Linux Openldap server over TLS/SSL
Hi folks,
How can i configure an AIX LDAP client to authenticate against an Linux Openldap server over TLS/SSL? It works like a charm without TLS/SSL. i would like to have SSL encrypted communication for ldap (secldapclntd) and ldapsearch etc. while accepting every kind of certificate/CA. Thanks in advance. |
Quote:
http://www.openldap.org/faq/data/cache/185.html You don't say what you've done/tried, if you've read that, or what version/distro of Linux and openldap you're using, so it's hard to be specific. |
Yes, i already read it. And justly, my question is: how can i apply this same configuration (what is for linux clients) for aix clients?
Thnaks in advance. |
Quote:
You configure the AIX LDAP client however you see fit, and point it to the LDAP server...and it doesn't matter if that server is Linux, Solaris, Windows, or any other operating system. If the LDAP server is functional, and your client is configured, you're done. IBM has much documentation on client configuration. Again, you still don't say what you've done/tried of your own, or tell us what version/distro of Linux. https://www.ibm.com/developerworks/c..._dirty?lang=en http://www.ibm.com/developerworks/ai.../au-ldapconfg/ http://www.openldap.org/lists/openld.../msg00188.html AIX is a purchased, supported OS. If you're having problems with LDAP, you can always contact IBM tech support. |
The main thing is to realize that additional filesets are needed to support SSL.
I have not experimented with the most recent AIX ldap, so the fileset names may not be accurate, but besides the base you need a combination something like this (notebly the *crypto* filesets) Code:
[[ $1 == "-c" ]] && installp -d ${IDSDIR}/tdsfiles -agXc \ Code:
installp -d ${IDSDIR}/gskit -agXc \ Code:
#!/usr/bin/ksh |
All times are GMT -5. The time now is 08:30 AM. |