Re: [Lam-public] Enabling LDAPS

Roland Gruber Sat, 20 Aug 2022 00:25:30 -0700

Hi Ben,

there is no additional step needed. You should get an error message ifencryption cannot be activated.

Are you on the latest version of LAM?
How do you see that LDAPS is not used?



Best regards

Roland



Am 19.08.22 um 17:32 schrieb Ben Toms:

Thanks, Roland.

What I mean is that when I make the changes, LDAPS isn't being enabled.

Is there some additional steps?

On Fri, 19 Aug 2022 at 15:51, Roland Gruber <p...@rolandgruber.de> wrote:

Hi Ben,

there is no visible change if you use LDAPS.


Best regards

Roland


Am 19.08.22 um 09:18 schrieb Ben Toms:

Thanks, Roland.

I can see the wildcard cert that I uploaded previously under  "General
Settings" but when enabling under "Server Profiles", nothing seems to
change?



On Fri, 19 Aug 2022 at 06:57, Roland Gruber <p...@rolandgruber.de>

wrote:

Hi Ben,

to activate encryption please enable TLS (most common) or LDAPS in
general settings of the server profile:

https://www.ldap-account-manager.org/static/doc/manual/ch03s02.html#idm858


For TLS use the drop-down, for LDAPS use a URL starting with ldaps://
(e.g. ldaps://myserver.example.com).

Best regards

Roland


Am 19.08.22 um 01:08 schrieb Ben Toms:

Sorry, me again.

So, i'm looking to enable LDAPS. And have added the relevant wildcard

to

LAM as per:

https://www.ldap-account-manager.org/static/doc/manual-onePage/index.html#conf_sslCert


I'm not not 100% sure the steps to enable LDAPS.

https://www.ldap-account-manager.org/static/doc/manual-onePage/index.html#conf_sslCert

advises:

You can either upload a DER/PEM formatted certificate file or import

the

certificates directly from an LDAP server that is available with

LDAP+SSL

(ldaps://). LAM will automatically override system certificates if at

least

one certificate is uploaded/imported.



And the following states

https://www.ldap-account-manager.org/static/doc/manual-onePage/index.html#idm6537

:

You will need to setup ldap.conf to trust your server certificate. Some

installations use /etc/ldap.conf and some use /etc/ldap/ldap.conf. It

is a

good idea to symlink /etc/ldap.conf to /etc/ldap/ldap.conf. Specify

the

server CA certificate with the following option:



The SSL is a publicly signed wildcard, but not 100% how to enable. is

there

any port settings etc?

--


[image: Image]

[image: -] <https://datajar.co.uk/>

[image: -] <https://twitter.com/dataJARltd>   [image: -]
<https://www.linkedin.com/company/datajar-ltd/>   [image: -]
<https://www.facebook.com/datajarltd>
[image: -]
Ben Toms
Head of Innovation and Platform

[image: Image] www.datajar.co.uk <http://datajar.co.uk>

[image: Image] b...@datajar.co.uk

[image: Image] 01273 041886

[image: Image] 0800 368 9330

[image: Image] Orange Row, Brighton, BN1 1UQ



     [image: -]
<

https://www.channelpartnerinsight.com/news/4032018/meet-finalists-datajar-director-head-services-james-ridsdale


[image:
-]
<

https://www.g2.com/products/datajar-mobi/reviews?__cf_chl_jschl_tk__=33df3e8cf236e1c1ddeefd4b9cf19530e62bf9b0-1623755259-0-Aav6hYnTvr1htYNz3oTNMDNhad6CHhZiPSlNgKXuLWm_E-6VBUcr-uR2z0p7j7GqLk79B4nbAYcRymBktEUjWggmaSLf0Es4FTpJVCJ0OCWFVmHauwFW8mdCVsDhJQSCtc0CCpKndUo0Fr5Ssa_arQMtlOARCXknRGbITdzNbVf_g0Ozg-anqT1uf1_2luz_f6AZLXaFPecFyF4sv3UvFh7Y9tLcTA3vX1whMzzHzJr-0OUUirmcPjZ9EvgrIN-MwQB91Zrj4AB8ZqfEYzCuJ32gilhGYHXLv4yK0ggAIAWYqU5T3SdX06V0-dbY6jZaFLW-QtB8_x2VDj0S9l71_hHDzJBUDM-53ILOdxBs0CnmPWQ5MCssu2gsXz1xEk_BOsA5BVekEK39s3AcbrjHElfeYVyMi7vVpTmHCH07ofiylTU7E5ACDbojaMkiBhimYCx0tfqLBkRRQiEAsIQnNBt3_eqCmFpqmdsk4VhqxN0MN2UpycQ7z6dMBnKaKSsYgA#details






Best Technical Support
MSP Innovation Awards
Europe 2021 [image: -]
<

https://www.g2.com/products/datajar-mobi/reviews?__cf_chl_jschl_tk__=33df3e8cf236e1c1ddeefd4b9cf19530e62bf9b0-1623755259-0-Aav6hYnTvr1htYNz3oTNMDNhad6CHhZiPSlNgKXuLWm_E-6VBUcr-uR2z0p7j7GqLk79B4nbAYcRymBktEUjWggmaSLf0Es4FTpJVCJ0OCWFVmHauwFW8mdCVsDhJQSCtc0CCpKndUo0Fr5Ssa_arQMtlOARCXknRGbITdzNbVf_g0Ozg-anqT1uf1_2luz_f6AZLXaFPecFyF4sv3UvFh7Y9tLcTA3vX1whMzzHzJr-0OUUirmcPjZ9EvgrIN-MwQB91Zrj4AB8ZqfEYzCuJ32gilhGYHXLv4yK0ggAIAWYqU5T3SdX06V0-dbY6jZaFLW-QtB8_x2VDj0S9l71_hHDzJBUDM-53ILOdxBs0CnmPWQ5MCssu2gsXz1xEk_BOsA5BVekEK39s3AcbrjHElfeYVyMi7vVpTmHCH07ofiylTU7E5ACDbojaMkiBhimYCx0tfqLBkRRQiEAsIQnNBt3_eqCmFpqmdsk4VhqxN0MN2UpycQ7z6dMBnKaKSsYgA#details


Ranked no1 for support
G2 MDM Grid® for mobile device
management Spring 2022



_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public



_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public





_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public



_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public





_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public



_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public

Re: [Lam-public] Enabling LDAPS

Reply via email to