By default, LDAP traffic between the ProxySG appliance and the LDAP directory server is handled via an insecure connection. You can encrypt traffic by enabling LDAP over SSL (LDAPS) in the LDAP realm. This is accomplished by installing a CA certificate signed by the secure LDAP server onto the ProxySG appliance. After the ProxySG validates the LDAP directory's server certificate, an encrypted communication channel is established.
|Your LDAP directory must conform to LDAPv3 standards to take advantage of LDAPS.|
|The CA certificate generated by the secure LDAP server needs to be in a PEM (Privacy Enhanced Mail) Base 64 encoded format.|
Select the CA Certificate List that you just created from the CCL drop down menu. All other default settings should be retained.
Open topic with navigation