TERNET LDAP Certificate

[dmakweba]

I am guessing to have problem with certificate in our ldap server because the error we are getting when trying to login through our IDP is related to certificate.

How would you best describe your issue ?

• Problem with one of the services
• Ansible problem
• Puppet problem
• Container problem
• Want to join as collaborator
• General question, enhancement or suggestion

Please suggest a tag to the issue from the list provided, if relevant.

Repository information

Our LDAP was not deployed with the automation tool like ansible, its the first manual deployment.

• Branch:
• git hash:

Issue description

If i can ask;
how to deploy certificate on ldap? I dont remember if we deployed one during the setup

Logs and other information

I don't have the logs for the issue

[brucellino]

Hi @dmakweba - this is one for @fmarco76.

As far as I can remember, you need to:

1. Client side :
   1. Add the certificate authority which issued the certificate of the LDAP server to the keystore of the idp machine.
   2. Ensure that the connection from idp to ldap is being made via ldaps on port 636.
2. Server side :
   1. Configure the ldap server to use the host certificate and listen on port 636 using TLS