Re: enable SSL

Am 17.08.23 um 18:50 schrieb Jean-Luc Chandezon:

I want to enable SSL, but I cannot find “/etc/sysconfig/slapd” file.

for an overview: https://openldap.org -> OpenLDAP Admin Guide -> choose your version -> search for "Using TLS"

First, I've to say, think about your ldap-server's name. The DNS name...

Given, you run your ldap-server on an IP-Adress which is known as ldap.example.org you should have certificates for that name. Let's Encrypt is your friend...

Then, the minimal required configuration is

TLSCertificateFile /acme/live/ldap.example.org/cert+intermediate.pem TLSCertificateKeyFile /acme/live/ldap.example.org/key.pem

Andreas