LDAP SSL certificates

For successful communication between your LDAP server and the Metric Insights server, you need to create an LDAP configuration file and add it to the /etc/openldap/ directory on your LDAP server.

1. ldap.conf file > certificates directory

  1. Access your ldap.conf file and identify where the SSL certificate should be placed
  2. Change directory with cd /etc/openldap/cacerts

2. Create a file for your SSL certificate

While in the /etc/openldap/cacerts directory, create a new file using touch GlobalAD.crt

3. Place your certificate in GlobalAD.crt

  1. Open the GlobalAD.crt file in Linux editor tool
  2. Paste your SSL certificate to GlobalAd.crt

4. Set certificate ownership to "apache"

Change ownership of the certificate to apache:apache, using the chown command

5. If needed, add TLS_REQCERT allow

If you are using self-signed certificates, add TLS_REQCERT allow to /etc/openldap/ldap.conf