Task #1582
open
Image works fine. Setup:
git clone https://github.com/michel4j/389ds.git
cd 389ds
mkdir certs
cd certs
#setup certificates
openssl genrsa -out ca.pem 4096
openssl req -new -key ca.pem -out ca.csr
openssl x509 -req -in ca.csr -signkey ca.pem -days 10000 -sha256 -out ca.crt
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr
... CZ, Czech Republic, Prague, BCV, , ldap.example.com, root@ldap.example.com ...
openssl x509 -req -CA ca.crt -CAkey ca.pem -in server.csr -days 1000 -sha256 -set_serial 1 -out server.crt
cd ..
vim docker-compose.yml
DIR_SUFFIX: c=cz
DIR_ADMIN_USERNAME: "admin"
DIR_MANAGER_PASSWORD: "demodemo"
docker-compose up
LDAP supports only TLS1.2 and strong ciphers. Only quirk is that it does not present whole certificate chain when accessed through LDAPS.
It has some example entries created - we can tweak this through the confd and templates (located in confd/templates/ ). We can definitelly use this to fill in some demo data.
Also available in: Atom
PDF
