Anonymous

Changes

From Pumping Station One

Talk:Systems/Services/Samba (view source)

Revision as of 18:17, 20 September 2014

129 bytes added ,  18:17, 20 September 2014
→‎Ldap needs a "real" cert
Line 5: Line 5:  
paigely uses openldap to communicate with our ldap server over ssl, and we can't set the openldap TLS_CACERT on their server. It defaults to /etc/ssl/ca-certificates.crt, so it's ok, we just have to use a "real" certificate.  self signed CA causes problems here
 
paigely uses openldap to communicate with our ldap server over ssl, and we can't set the openldap TLS_CACERT on their server. It defaults to /etc/ssl/ca-certificates.crt, so it's ok, we just have to use a "real" certificate.  self signed CA causes problems here
 
--[[User:Hef|Hef]] ([[User talk:Hef|talk]]) 05:13, 20 September 2014 (CDT)
 
--[[User:Hef|Hef]] ([[User talk:Hef|talk]]) 05:13, 20 September 2014 (CDT)
 +
 +
Fixing this by deploying a filtering LDAP server that we can use to provide limited access to the AD tree to external services.
Amishhammer
483

edits

Retrieved from "https://ps1.mywikis.wiki/wiki/Special:MobileDiff/19384"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.
More information