SIDEBAR
»
S
I
D
E
B
A
R
«
Adding SSL Support to OpenDirectory Replica
October 31st, 2008 by Andrew Chlup

While configuring our web filter, we realized that Apple’s default master/slave setup only allows LDAPS through the master server. This has some major limitations in regards to the usefulness of replicas. It turns out that one simple terminal command solves the problem.

sudo slapconfig -setldapconfig -ssl on -sslcert /etc/certificate/<your certificate>.crt -sslkey /etc/certificate/<your certificate>.key -ssldomain <server domain>

If there’s a way to do this through the GUI I couldn’t find it. Hope this helps somebody else out there.


Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
»  Substance:WordPress   »  Style:Ahren Ahimsa