Dear friends, I am trying to set up an LDAP configuration for Plone, using the PloneLDAP product.
I need to connect to an LDAP over SSL port, but to do that, I need Plone to validate the server certificate. I was not able to find out where to configure Plone to know which is the CA certificate to validate the server certificate; however, a guy in the python-ldap list gave me a hint to do a "ldap.set_option(ldap.OPT_X_TLS_CACERTFILE,'/etc/httpd/ssl.crt/myCA-cacerts.pem')" command to set a "global" CA Cert file. I put that as the last command in site-packages/ldap/__init__.py file (stripping the "ldap." prefixes), and Plone was able to connect to the LDAP server (I was able to search users, etc.) My question is: is there a better or cleaner way or place to configure such a thing? Messing with the source code for a python library seem a little wrong to me... Regards, Alberto -- View this message in context: http://n2.nabble.com/LDAP-User-Folder-Certificate-Configuration-tp2123979p2123979.html Sent from the Installation, Setup, Upgrades mailing list archive at Nabble.com. _______________________________________________ Setup mailing list [email protected] http://lists.plone.org/mailman/listinfo/setup
