Securing With Tls - Cisco TelePresence Administrator's Manual
Video communication server
Hide thumbs
Also See for TelePresence:
- Administrator's manual (507 pages) ,
- Manual (24 pages) ,
- Specifications (7 pages)
Table of Contents
Advertisement
Securing with TLS
The connection to the LDAP server can be encrypted by enabling Transport Level Security (TLS) on the
connection. To do this you must create an X.509 certificate for the LDAP server to allow the VCS to verify
the server's identity. After the certificate has been created you will need to install the following three files
associated with the certificate onto the LDAP server:
the certificate for the LDAP server
n
the private key for the LDAP server
n
the certificate of the Certificate Authority (CA) that was used to sign the LDAP server's certificate
n
All three files should be in PEM file format.
The LDAP server must be configured to use the certificate. To do this:
Edit /etc/openldap/slapd.conf and add the following three lines:
n
TLSCACertificateFile <path to CA certificate>
TLSCertificateFile <path to LDAP server certificate>
TLSCertificateKeyFile <path to LDAP private key>
The OpenLDAP daemon (slapd) must be restarted for the TLS settings to take effect.
To configure the VCS to use TLS on the connection to the LDAP server you must upload the CA's certificate
as a trusted CA certificate. This can be done on the VCS by going to:
management > Trusted CA
Cisco VCS Administrator Guide (X7.2)
certificate.
Reference material
Maintenance > Certificate
Page 364 of 498
Hide quick links:
Advertisement
Table of Contents
