Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
n
Be located in the Local Computer’s Personal certificate store. This can be seen using the Certificates
MMC snap-in.
MMC snap-in.
n
Have the private details on how to obtain a key associated for use with it stored locally. When viewing the
certificate you should see a message saying “You have a private key that corresponds to this certificate’’.
certificate you should see a message saying “You have a private key that corresponds to this certificate’’.
n
Have a private key that does not have strong private key protection enabled. This is an attribute that can be
added to a key request.
added to a key request.
n
The Enhanced Key Usage extension includes the Server Authentication object identifier, again this forms
part of the key request.
part of the key request.
n
Issued by a CA that both the domain controller and the client trust.
n
Include the Active Directory fully qualified domain name of the domain controller in the common name in
the subject field and/or the DNS entry in the subject alternative name extension.
the subject field and/or the DNS entry in the subject alternative name extension.
To configure the VCS to use TLS on the connection to the LDAP server you must upload the CA’s certificate
as a trusted CA certificate. This can be done on the VCS by going to:
as a trusted CA certificate. This can be done on the VCS by going to:
Maintenance > Security certificates
> Trusted CA certificate
.
Configuring an OpenLDAP server
Prerequisites
These instructions assume that an OpenLDAP server has already been installed. For details on installing
OpenLDAP see the documentation at
OpenLDAP see the documentation at
.
The following examples use a standard OpenLDAP installation on the Linux platform. For installations on
other platforms the location of the OpenLDAP configuration files may be different. See the OpenLDAP
installation documentation for details.
other platforms the location of the OpenLDAP configuration files may be different. See the OpenLDAP
installation documentation for details.
Cisco TelePresence Video Communication Server Administrator Guide (X8.5.1)
Page 419 of 563
Reference material
LDAP server configuration for device authentication