LDAPS

Related base article: User Authentication with External Directory Services

To get LDAPS running with SVS, you'll have to perform the following steps:

In Windows

  1. Create a new folder "%SYSCONFDIR%" in SVS directory.
  2. Create a new file inside %SYSCONFDIR% named ldap.conf.
  3. Create entries as following inside ldap.conf:

First try this:
TLS_REQCERT never

Sometimes it is required to have a direct link to the certificate file; in this case, use the following additional parameter:
TLS_CACERT "<PATH_TO_CERTIFICATE>"

Changes AD-LDAP script:

In the "options" section, change this:
'use_ssl' => false,

to this:
'use_ssl' => true,

Changes in Novell-LDAP script:

Change this:
$servername = "127.0.0.1";

to this:
$servername = "ldaps://FQDN";

Change port configuration (e.g. sep.inc.novell_ldap_sample.php) from this:
$serverport = 389;

to this:
$serverport = 636;

In Linux

  1. Go to /opt/jedox/ps/etc/openldap/
  2. Add in ldap.conf:
    TLS_REQCERT never
  3. Script changes are the same as in windows (Step 3 in Windows).

Updated June 5, 2023