LDAP Server Settings (LDAP Certificate) screen

Use this screen to manage LDAP server certificates.

Directory Certificates provide authentication of the Directory Server. There are two ways to verify the identity of the Directory Server:

Install certificates that complete a certificate chain to a root Certificate Authority.

Install a certificate that exactly matches the certificate provided by the Directory Server.

To upload a certificate, select the certificate from the list, and then click Certificate Upload. The URL field accepts IPv4 or IPv6 IP addresses. If you are using an IPv6 address, you must put brackets around the IPv6 address in the ftp/tftp/http URL to return the correct data. For example, ftp://user1:mypass@[2001:610:1:80aa:192:87:102:43]. If no certificates are installed, the Directory Server is not authenticated (although the connection to the Directory Server must be established using SSL).

The following table describes the columns within the LDAP Server Settings (LDAP Certificate) screen.

Column

Description

 

 

 

 

md5 Fingerprint

Unique fingerprint of the certificate, calculated using cryptographic hash

 

 

function Message-Digest algorithm 5 (MD5). This fingerprint can be used to

 

 

further verify that the correct certificate is being used.

 

 

 

 

Version

Version of the certificate

 

 

Virtual Connect users and roles 74