Securing the ldap connection with tls – Tandberg Data N3 User Manual

TANDBERG Gatekeeper User Manual

22

xConfiguration LDAP UserDN: "Your user DN"

xConfiguration LDAP Password: "password"

The status of the connection between the Gatekeeper and the LDAP server can be verified
using the command

xstatus LDAP

The details of the LDAP server can also be configured via the web interface on the
Gatekeeper Configuration > Gatekeeper page (see Figure 15 for the parameters configured
to work with an LDAP server).

Figure 15 Configuring the Gatekeeper to authenticate with an LDAP server

Securing the LDAP connection with TLS

The traffic between the Gatekeeper and the LDAP server can be encrypted using Transport
Layer Security (TLS). To use TLS, the LDAP server must have a valid certificate installed so
that the Gatekeeper can verify the server

’

s identity. For more information on setting up

certificates using common LDAP servers, see the Appendix: Configuring LDAP Servers.

Using the terminal interface TLS can be enabled with the following command

xConfiguration LDAP Encryption: TLS

TLS can also be enabled via the web interface using the Gatekeeper Configuration >
Gatekeeper page (see Figure 16 for the TLS LDAP Configuration).

The Gatekeeper will now only communicate with the LDAP server using TLS. To verify the
identity of the LDAP server, the certificate of the Certificate Authority (CA) that issued the
LDAP server with its certificate must be uploaded to the Gatekeeper. To install the CAs
certificate, navigate to the Gatekeeper Configuration > Files page and upload the CA
certificate as a Trusted CA certificate.