If your LDAP server uses SSL, you can import the SSL certificate file to Control Center and enable secure connection between Orchestrator and LDAP.

About this task

You can import the LDAP SSL certificate from the Certificates page in Control Center.

Prerequisites

  • If you are using LDAP servers, Windows Server 2008, Windows Server 2012, and Active Directory, verify that the LDAP Server Signing Requirements group policy is disabled on the LDAP server.

  • Obtain a self-signed server certificate or a certificate that is signed by a Certificate Authority.

  • Configure your LDAP server for SSL access. See the documentation of your LDAP server for instructions.

  • Explicitly specify the trusted certificate to perform the SSL authorization correctly.

Procedure

  1. Log in to Control Center as an administrator.
  2. Click Certificates.
  3. On the Trusted Certificates tab, click Import.
  4. Load the LDAP SSL certificate from a URL or a file.

    Option

    Action

    Import from URL or proxy URL

    Type the URL of the LDAP server:

    https://your_LDAP_server_IP_address or your_LDAP_server_IP_address:port

    Import from file

    Obtain the LDAP SSL certificate file and browse to import it.

  5. Click Import.

    A message confirming that the import is successful appears.

Results

The imported certificate appears in the Trusted SSL certificates list. The secure connection between Orchestrator and your LDAP server is activated.

What to do next

When you generate the LDAP connection URL, you should enable SSL on the Configure Authentication Provider page in Control Center.