How to set up LDAPS over SSL on UVMS?

Release : 6.x

Component : DOLLAR UNIVERSE

Sub-Component: Univiewer Management Server (UVMS)

SSL Configuration

To use an LDAP directory in SSL mode, UVMS is not required to be configured in SSL mode.

The unissl command, located in the univiewer_server\<nodename>\app\bin\ folder enables the SSL communication configuration between UVMS and LDAP. The UVMS SSL architecture is described in section "SSL Communications".

The following steps must be followed:

Create a keystore / trustore (if necessary) with a unissl genstore command. Refer to section "Generate the keystore/truststore".

Add the LDAP certificate to the UVMS-approved certificates list with a unissl import command (refer to section "Import a certificate").

Then the ldap.xml configuration file must be updated accordingly pointing to the hostname of the LDAP server whose certificates were imported and its port (by default 636)

And finally, LDAP variables in values.xml need to be set accordingly to enable the integration with LDAP.