WMDE
/
LDAPAccountManager
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

added ldap.conf setup

This commit is contained in:
Roland Gruber 2009-07-05 13:08:28 +00:00
parent 67d638d521
commit ecce801d45
1 changed files with 13 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
lam/docs/README.security.txt
View File

@ -6,10 +6,20 @@
protect yourself against network sniffers.
2. LDAP+SSL and TLS
2. LDAP with SSL and TLS
LAM should start TLS automatically if possible. LDAP+SSL will be used if you use
ldaps://servername in your configuration profile.
SSL will be used if you use ldaps://servername in your configuration profile.
TLS can be activated with the "Activate TLS" option.
You will need to setup ldap.conf to trust your server certificate. Some installations
use /etc/ldap.conf and some use /etc/ldap/ldap.conf. It is a good idea to symlink
/etc/ldap.conf to /etc/ldap/ldap.conf.
Specify the server CA certificate with the following option:
TLS_CACERT /etc/ldap/ca/myCA/cacert.pem
This needs to be the public part of the signing certificate authority. See "man ldap.conf"
for additional options.
3. Chrooted servers