Manualshelf

HP CIFS Server 2.2i Administrator's Guide version A.01.11.01

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
131132133134135136137138139140
LDAP Integration Support
Enabling Secure Sockets Layer (SSL)
Chapter 6126
subsection of the “Installing LDAP-UX Client Services” chapter in
LDAP-UX Client Services B.03.20 Administrator’s Guide at
http://docs.hp.com.
If the LDAP-UX client services has already been set up, modify the
authenticationMethod and preferredServerList attributes in the
/etc/opt/ldapux/ldapux_profile file as follows:
Modify the authenticationMethod attribute to add the transport
layer security authentication method, tls:, in front of the original
authentication method, simple.
For example, without SSL enabled, the original
authenticationMethod entry is authenticationMethod: simple.
With SSL enabled, the authenticationMethod entry will be
authenticationMethod: tls:simple.
Modify the preferredServerList attribute to change the regular
LDAP port number, 389, to the SSL port number, 636.
For example, without SSL enabled, the original
preferredServerList entry is preferredServerList:
15.13.111.200:389. With SSL enabled, the preferredServerList
entry will be preferredServerList: 15.13.111.200:636.
Configuring HP CIFS Server to enable SSL
You must set the HP CIFS Server configuration parameter, ldap ssl,to
Yes. The ldap ssl configuration parameter exists in the
/etc/opt/samba/smb.conf file. For detailed information on how to
enable SSL on the HP CIFS Server, see “Configuring LDAP Feature
Support” on page 136.