--On Thursday, August 17, 2023 10:57 PM +0200 "A. Schulze"
<[email protected]> wrote:
Am 17.08.23 um 18:50 schrieb Jean-Luc Chandezon:
I want to enable SSL, but I cannot find "/etc/sysconfig/slapd" file.
for an overview: https://openldap.org -> OpenLDAP Admin Guide -> choose
your version -> search for "Using TLS"
First, I've to say, think about your ldap-server's name. The DNS name...
Given, you run your ldap-server on an IP-Adress which is known as
ldap.example.org
you should have certificates for that name. Let's Encrypt is your
friend...
Then, the minimal required configuration is
TLSCertificateFile /acme/live/ldap.example.org/cert+intermediate.pem
TLSCertificateKeyFile /acme/live/ldap.example.org/key.pem
I'm guessing they are following instructions telling them to modify
/etc/sysconfig/slapd to add an ldaps:/// URI. The message is so vague
though, it's hard to really know their intent.
--Quanah
