edsysad.org

Adding SSL Support to OpenDirectory Replica

Friday, October 31st, 2008

While configuring our web filter, we realized that Apple’s default master/slave setup only allows LDAPS through the master server. This has some major limitations in regards to the usefulness of replicas. It turns out that one simple terminal command solves the problem.

sudo slapconfig -setldapconfig -ssl on -sslcert /etc/certificate/<your certificate>.crt -sslkey /etc/certificate/<your certificate>.key -ssldomain <server domain>

If there’s a way to do this through the GUI I couldn’t find it. Hope this helps somebody else out there.

Posted in Apple Server Admin | No Comments »

Pages
- About Me
Categories
Good Reads
10.5 Server 21st Century Skills Arras authentication Big6 Blog Buddypress cognitive surplus Core Standards dekiwiki design Ed-Tech Elgg eportfolios ethics fix hack Internet Bus ipad iphone Jamaica K-12 Education ldap LDAPS Linux Online Education Open-Source OS X Server plugins Predictions Presentations rambling Random Babbling rss Rural Divide social networking SSL staff development students teens Text Messaging time-management truthiness Wiki WordpressMU
WP Cumulus Flash tag cloud by Roy Tanck and Luke Morton requires Flash Player 9 or better.
Archives
Meta

edsysad.org

Adding SSL Support to OpenDirectory Replica

Pages

Categories

Good Reads

Archives

Meta