?
Solved

How to configure OpenLDAP with SSL

Posted on 2009-07-07
1
Medium Priority
?
1,001 Views
Last Modified: 2013-12-24
I want to configure OpenLDAP with SSL in fedora core 8 for squid authendication. I have configured OpenLDAP without SSL support. OpenLDAP authendication is working fine in squid. Currently we have 100 users in OpenLDAP server. Now I want to configure the OpenLDAP server with SSL support without affecting the previously created users. I am using LDAP Accounts Manager (lam) GUI to add/remove users in OpenLDAP server.

LDAP Accounts Manager will support ssl?

If yes how should I configured lam with ssl support?
0
Comment
Question by:rajasekarramasamy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 20

Accepted Solution

by:
Daniel McAllister earned 375 total points
ID: 24806187
OK... a couple of items to cover here:

1) Whether or not you access over SSL, the LDAP database will not change. OpenLDAP is the server software, and it reads/writes to a database file -- which you should backup before doing anything else!

2) If you installed OpenLDAP from yum, or most RPM repositories, the SSL libraries should already be compiled in... if not, you'll need to rebuild OpenLDAP with SSL enabled

For help in re-building your OpenLDAP server software, BACKUP YOUR DATABASE and read here:
http://www.openldap.org/doc/admin24/install.html

3) Once the database server (OpenLDAP, specifically) has SSL capabilities compiled in, you'll need to configure the security certificates. Detailed instructions can be found here:
http://www.credentia.cc/certs/howto/openldap.html

4) Assuming you backed up your database, you should be all set -- EVEN IF the rebuild reset your database... which I've NEVER seen it do, but this should NOT be the "year of living dangerously" -- so check as you go along!

Good Luck!

Dan
IT4SOHO
0

Featured Post

WatchGuard's M Series Appliances - Miecom Approved

WatchGuard's newest M series appliances were put to the test by Miercom.  We had great results and outperformed all of our competitors in both stateless and stateful traffic throghput scenarios! Ready to see how your UTM appliance stacked up? Download the Miercom Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently I was talking with Tim Sharp, one of my colleagues from our Technical Account Manager team about MongoDB’s scalability. While doing some quick training with some of the Percona team, Tim brought something to my attention...
In this series, we will discuss common questions received as a database Solutions Engineer at Percona. In this role, we speak with a wide array of MySQL and MongoDB users responsible for both extremely large and complex environments to smaller singl…
Video by: Steve
Using examples as well as descriptions, step through each of the common simple join types, explaining differences in syntax, differences in expected outputs and showing how the queries run along with the actual outputs based upon a simple set of dem…
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question