How to setup LDAPS over SSL on UVMS?
search cancel

How to setup LDAPS over SSL on UVMS?

book

Article ID: 234154

calendar_today

Updated On:

Products

CA Automic Dollar Universe

Issue/Introduction

How to set up LDAPS over SSL on UVMS?

Environment

Release : 6.x

Component : DOLLAR UNIVERSE

Sub-Component: Univiewer Management Server (UVMS)

Resolution

SSL Configuration

To use an LDAP directory in SSL mode, UVMS is not required to be configured in SSL mode.

The unissl command, located in the univiewer_server\<nodename>\app\bin\ folder enables the SSL communication configuration between UVMS and LDAP. The UVMS SSL architecture is described in section "SSL Communications".

The following steps must be followed:

Create a keystore / trustore (if necessary) with a unissl genstore command. Refer to section "Generate the keystore/truststore".

Add the LDAP certificate to the UVMS-approved certificates list with a unissl import command (refer to section "Import a certificate").

Then the ldap.xml configuration file must be updated accordingly pointing to the hostname of the LDAP server whose certificates were imported and its port (by default 636)

And finally, LDAP variables in values.xml need to be set accordingly to enable the integration with LDAP.