GitHub user rajujith added a comment to the discussion: LDAP troubleshooting
@ffslcschools Could you try these steps: STEPS TO ENABLE/ADD LDAPS SERVER IN CLOUDSTACK ============================================== cd /etc/cloudstack/management/ Download the Server certificate, not the full chain or the ROOT CA certificate. echo "" | openssl s_client -connect ad.domain.local:636 -showcerts 2>/dev/null | openssl x509 -out ad-server-certificate.pem openssl x509 -in ad-server-certificate.pem -noout -text Import the X509 certificate/ PEM file to a java keystore. keytool -importcert -alias labAD -file ad-server-certificate.pem -trustcacerts -keystore ad-acs-keystore -storetype JKS keytool -v -list -keystore ad-acs-keystore root@mgmt1:/etc/cloudstack/management# ll ad-acs-keystore -rw-r--r-- 1 root root 1332 Jan 27 12:32 ad-acs-keystore Copy the keystore file to all management servers in the same path. Update the CloudStack global configuration and add the LDAPS server. ldap.truststore : /etc/cloudstack/management/ad-acs-keystore ldap.truststore.password: password Update requires service restart ! Add the LDAP servers using the CloudStack UI. GitHub link: https://github.com/apache/cloudstack/discussions/9899#discussioncomment-12347274 ---- This is an automatically sent email for users@cloudstack.apache.org. To unsubscribe, please send an email to: users-unsubscr...@cloudstack.apache.org
