Configuring LDAPS
In an LDAP environment, where the Spotfire system communicates with an LDAP directory server, administrators often secure the LDAP protocol using TLS, if the LDAP directory supports this.
Procedure
-
If you are using a self-signed certificate, set
Spotfire Server to trust this certificate:
- Export the certificate to file and copy it to Spotfire Server.
- Open a command-line interface, navigate to the <installation dir>/jdk/jre/lib/security directory, and run the following keytool command: ../../bin/keytool -import -file ldapserver.crt -keystore cacerts -alias spotfire_ldaps. Replace ldapserver.crt with the name of the exported certificate.
- When prompted, enter the password to the cacerts keystore. The default password is "changeit" (without quotation marks).
- Verify that the certificate has been successfully added by using the following command: ../../bin/keytool -list -keystore cacerts -alias spotfire_ldaps.
- When prompted, enter the password to the cacerts keystore.
- To activate LDAPS, use the create-ldap-config or the update-ldap-config command.
Related reference
Copyright © TIBCO Software Inc. All rights reserved.