Solved

How to configure OpenLDAP with SSL

Posted on 2009-07-07
1
994 Views
Last Modified: 2013-12-24
I want to configure OpenLDAP with SSL in fedora core 8 for squid authendication. I have configured OpenLDAP without SSL support. OpenLDAP authendication is working fine in squid. Currently we have 100 users in OpenLDAP server. Now I want to configure the OpenLDAP server with SSL support without affecting the previously created users. I am using LDAP Accounts Manager (lam) GUI to add/remove users in OpenLDAP server.

LDAP Accounts Manager will support ssl?

If yes how should I configured lam with ssl support?
0
Comment
Question by:rajasekarramasamy
1 Comment
 
LVL 20

Accepted Solution

by:
Daniel McAllister earned 125 total points
ID: 24806187
OK... a couple of items to cover here:

1) Whether or not you access over SSL, the LDAP database will not change. OpenLDAP is the server software, and it reads/writes to a database file -- which you should backup before doing anything else!

2) If you installed OpenLDAP from yum, or most RPM repositories, the SSL libraries should already be compiled in... if not, you'll need to rebuild OpenLDAP with SSL enabled

For help in re-building your OpenLDAP server software, BACKUP YOUR DATABASE and read here:
http://www.openldap.org/doc/admin24/install.html

3) Once the database server (OpenLDAP, specifically) has SSL capabilities compiled in, you'll need to configure the security certificates. Detailed instructions can be found here:
http://www.credentia.cc/certs/howto/openldap.html

4) Assuming you backed up your database, you should be all set -- EVEN IF the rebuild reset your database... which I've NEVER seen it do, but this should NOT be the "year of living dangerously" -- so check as you go along!

Good Luck!

Dan
IT4SOHO
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

CCModeler offers a way to enter basic information like entities, attributes and relationships and export them as yEd or erviz diagram. It also can import existing Access or SQL Server tables with relationships.
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
Video by: Steve
Using examples as well as descriptions, step through each of the common simple join types, explaining differences in syntax, differences in expected outputs and showing how the queries run along with the actual outputs based upon a simple set of dem…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now