--On Thursday, August 17, 2023 10:57 PM +0200 "A. Schulze" sca@andreasschulze.de wrote:
Am 17.08.23 um 18:50 schrieb Jean-Luc Chandezon:
I want to enable SSL, but I cannot find "/etc/sysconfig/slapd" file.
for an overview: https://openldap.org -> OpenLDAP Admin Guide -> choose your version -> search for "Using TLS"
First, I've to say, think about your ldap-server's name. The DNS name...
Given, you run your ldap-server on an IP-Adress which is known as ldap.example.org you should have certificates for that name. Let's Encrypt is your friend...
Then, the minimal required configuration is
TLSCertificateFile /acme/live/ldap.example.org/cert+intermediate.pem TLSCertificateKeyFile /acme/live/ldap.example.org/key.pem
I'm guessing they are following instructions telling them to modify /etc/sysconfig/slapd to add an ldaps:/// URI. The message is so vague though, it's hard to really know their intent.
--Quanah