IBM DataPower Operations Dashboard v1.0.6.0

A newer version of this product documentation is available.

You are viewing an older version. View latest at IBM DPOD Documentation.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

In order to connect to the LDAP server over SSL (LDAPS ) perform the following steps:

  1. The default password for the JVM TrustStore is “changeit”, and you should change it to a new password

    Keytool -storepasswd -keystore /app/java/jre/lib/security/cacerts 

Enter keystore password:  <old password>
New keystore password: <new password>
Re-enter new keystore password: <new password>
                       

  2. Import the LDAP / CA certificate to the JVM trustStore. You can either import a self signed certificate, or the CA certificate that signed the LDAP certificate.

    Keytool -import -v -noprompt -trustcacerts -file <certificate file location > -keystore /app/java/jre/lib/security/cacerts -storepass <key store password>
                       
  3.  Change the LDAP URL in both UI application server and DPOD system parameters (via DPOD Console)

    1. Edit server.xml to use the SSL port (The default SSL port for Active directory is 686). todo:hk montier-ui

       vi /app/ui/MonTier-UI/conf/server.xml

      and then

      <Realm className="org.apache.catalina.realm.JNDIRealm"
 connectionURL="ldaps://<LDAP Server Host>:686"
 alternateURL="ldaps://<LDAP Server Host>:389"
 referrals="ignore"
 connectionName="CN=...,OU=...,DC=..."
    2. Change LDAP Connection URL in DPOD's Web Console to use LDAPS. Use the SSL port (The default for Active directory for Global catalog is 3269).
      example : ldaps://ldap-server:3269
       

  4. Restart the DPOD Console
    DPOD Console must be restarted so LDAP configuration becomes effective.

    stop_services.sh -o ui
start_services.sh -o ui

 

  • No labels

IBM DataPower Operations Dashboard (DPOD) v1.0.6.0