Cisco Headend System Release 2.5
Appendix A
Enable the LDAP Client with TLS Authentication
22
4017610 Rev A
Enable the LDAP Client with TLS Authentication
This procedure should be followed only at sites that require TLS authentication
between LDAP client and server. For this to work, the LDAP server MUST have
been configured for TLS authentication.
Important: When enabling LDAP support for your LDAP client, you must obtain
these attributes as they pertain to your system from the site administrator. These
instructions use the following sample LDAP client attributes to illustrate the
procedures.
between LDAP client and server. For this to work, the LDAP server MUST have
been configured for TLS authentication.
Important: When enabling LDAP support for your LDAP client, you must obtain
these attributes as they pertain to your system from the site administrator. These
instructions use the following sample LDAP client attributes to illustrate the
procedures.
LDAP server hostname = ldapsrvr
LDAP server IP address = 192.168.1.1
LDAP port = 389
profileName=tls_simple_profile
proxyDN = "cn=readonly,dc=example,dc=com"
proxyPassword = secret
CA certificate file = /var/tmp/cacert.pem
Before You Begin
Before you begin, gather the following information from the site administrator:
LDAP server hostname and IP address
LDAP port number if not using the default of 389
profileName=tls_simple_profile
Proxy distinguished name (proxyDN)
Proxy password (proxyPassword)
Root CA certificate file (cacert.pem) in PEM format