You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cloudstack.apache.org by Claus Kalle <ka...@uni-koeln.de> on 2014/09/12 17:12:44 UTC
ldap usage with SSL oder TSL in 4.4
Hi,
I was wondering how to setup ldap usage in CS4.4 when the LDAP-Server
required usage of TSL oder SSL. Is there any doc for the 4.4 status of
implementation? Just setting port# to 636 gives me
2014-09-12 17:13:27,359 DEBUG [o.a.c.l.LdapContextFactory]
(catalina-exec-20:ctx-c873fa2d ctx-1e51db03) initializing ldap with
provider url: ldap://ldaps-rzkj-3.rrz.uni-koeln.de:636
2014-09-12 17:13:27,364 DEBUG [o.a.c.l.LdapManagerImpl]
(catalina-exec-20:ctx-c873fa2d ctx-1e51db03) NamingException while doing
an LDAP bind
javax.naming.ServiceUnavailableException:
ldaps-rzkj-3.rrz.uni-koeln.de:636; socket closed
Would anybody share their experience?
--
Freundliche Gruesse, Claus Kalle
Re: ldap usage with SSL oder TSL in 4.4
Posted by Claus Kalle <ka...@uni-koeln.de>.
Hi Ian,
thanks for your hint, that did it in addition to specify port 636
instead of 389 when configuring the ldap server. An additional hint
would be nice in the doc about the standard truststore password and
location.
Thanks again, now I am a happy ldap user with cloudstack,
Claus
schrieb Ian Duffy am 12.09.2014 18:44 Uhr:
> Hi Claus,
>
> The SSL mode is switched on when you provide a trust store and trust store
> password.
>
> Both are configurable from the global settings page.
>
> See the docs at
> http://cloudstack-administration.readthedocs.org/en/latest/accounts.html
>
> Hope this helps,
> Ian
> On 12 Sep 2014 16:15, "Claus Kalle" <ka...@uni-koeln.de> wrote:
>
>> Hi,
>>
>> I was wondering how to setup ldap usage in CS4.4 when the LDAP-Server
>> required usage of TSL oder SSL. Is there any doc for the 4.4 status of
>> implementation? Just setting port# to 636 gives me
>>
>> 2014-09-12 17:13:27,359 DEBUG [o.a.c.l.LdapContextFactory]
>> (catalina-exec-20:ctx-c873fa2d ctx-1e51db03) initializing ldap with
>> provider url: ldap://ldaps-rzkj-3.rrz.uni-koeln.de:636
>> 2014-09-12 17:13:27,364 DEBUG [o.a.c.l.LdapManagerImpl]
>> (catalina-exec-20:ctx-c873fa2d ctx-1e51db03) NamingException while doing
>> an LDAP bind
>> javax.naming.ServiceUnavailableException:
>> ldaps-rzkj-3.rrz.uni-koeln.de:636; socket closed
>>
>>
>> Would anybody share their experience?
>> --
>> Freundliche Gruesse, Claus Kalle
>>
>>
>
--
Freundliche Gruesse, Claus Kalle
Re: ldap usage with SSL oder TSL in 4.4
Posted by Ian Duffy <ia...@ianduffy.ie>.
Hi Claus,
The SSL mode is switched on when you provide a trust store and trust store
password.
Both are configurable from the global settings page.
See the docs at
http://cloudstack-administration.readthedocs.org/en/latest/accounts.html
Hope this helps,
Ian
On 12 Sep 2014 16:15, "Claus Kalle" <ka...@uni-koeln.de> wrote:
> Hi,
>
> I was wondering how to setup ldap usage in CS4.4 when the LDAP-Server
> required usage of TSL oder SSL. Is there any doc for the 4.4 status of
> implementation? Just setting port# to 636 gives me
>
> 2014-09-12 17:13:27,359 DEBUG [o.a.c.l.LdapContextFactory]
> (catalina-exec-20:ctx-c873fa2d ctx-1e51db03) initializing ldap with
> provider url: ldap://ldaps-rzkj-3.rrz.uni-koeln.de:636
> 2014-09-12 17:13:27,364 DEBUG [o.a.c.l.LdapManagerImpl]
> (catalina-exec-20:ctx-c873fa2d ctx-1e51db03) NamingException while doing
> an LDAP bind
> javax.naming.ServiceUnavailableException:
> ldaps-rzkj-3.rrz.uni-koeln.de:636; socket closed
>
>
> Would anybody share their experience?
> --
> Freundliche Gruesse, Claus Kalle
>
>