To configure LDAP TLS settings, complete the following steps.
- On the User Replication Agent computer, navigate to the /opt/inserver/etc directory and open inserverUR.ini in a text editor.
-
In the [Logon Control] section, verify the
ldap.server setting. If you are already using LDAP user
authentication, you do not need to change this setting.
Note: You must specify the fully qualified domain name (FQDN) for the ldap.server setting.
- In the ldap.server.port setting, enter the port number of the LDAP server, which is typically 636 when using TLS.
- Ensure the ldap.use.ssl setting is set to TRUE.
-
Change the path to the certificates database by modifying the
ldap.ssl.cert.path setting to use the actual path.
Certificate database files should be placed in a subdirectory.
ldap.use.ssl=TRUE ldap.ssl.cert.path=/opt/inserver/etc/certs ldap.server=acme.com ldap.server.port=636
- Save the file, and then close it.
-
Restart the User Replication Agent for the changes to take effect.
Note: The certificate database cannot be modified while it is use. Ensure all certificates are imported into the certificate database prior to configuring Perceptive Content Services. If Perceptive Content Services are already configured to use a certificate database, ensure services are stopped prior to making changes to it.