RHEL 6.3 – LDAP Series – Part 3 : LDAP Configuration With Encrypted Communication using TLS/SSL

Ramdev

I have started unixadminschool.com ( aka gurkulindia.com) in 2009 as my own personal reference blog, and later sometime i have realized that my leanings might be helpful for other unixadmins if I manage my knowledge-base in more user friendly format. And the result is today's' unixadminschool.com. You can connect me at - https://www.linkedin.com/in/unixadminschool/

Loading Facebook Comments ...

6 Responses

  1. jaswant says:

    Hi Sir

    Used above method and setup LDAp server on RHEL 6.4.
    When i use nslcd on client i am able to see LDAP users but when i used sssd i dont see any LDAP user.Created certificated and placed them as per plan mentioned.
    Testing this with strace…just to make sure if i am missing out something.

  2. jaswant says:

    just to explain my setup

    i am using my ldap server as CA server.
    so i am using
    server1 :- as LDAp and CA server
    server2 :- as LDAp client.

    in this blog you asked to edit nslcd.conf file and restart service….but if i want 2 use sssd with certificates….bit confused.

  3. jaswant says:

    it started working…..
    how can i check and confirm if there is handshaking going on with certificates…..dont see anything in messages file.
    checked in /var/log/sssd nothing there…..
    not using nslcd.conf but sssd.conf file only.Able to login with ldap user.

    Thanks for plan :-)

  4. jaswant says:

    Hi Ram

    i used blog to configure LDAP with CA…it’s working fine.Able to ass new users and i am able to login using LDAp authntication.
    Tried reseting password for one of the LDAP user using LDAPPASSWD it ask for LDAP password but gives error.

    [root~]# ldappasswd -x -D “uid=user1,cn=Manager,dc=domain,dc=com” -W
    Enter LDAP Password:
    ldap_bind: Invalid credentials (49)
    [root~]#

  5. saran says:

    Hi Ram,

    kindly help to configure same ldap with SASL bind authentication.It is very helpful for me when you will give some idea on this task.

Leave a Reply

Your email address will not be published.

[contact-form to='ramkumar.ramadevu@gmail.com' subject='New Learning Request Submitted'][contact-field label='Name' type='name' required='1'/][contact-field label='Email' type='email' required='1'/][contact-field label='Learning Request' type='textarea' required='1'/][contact-field label='Are you Looking for ' type='radio' required='1' options='Paid Training,Free Training'/][/contact-form]

What is your Learning Goal for Next Six Months ? Talk to us