Step 5: Configure the Password Sync Service
453
• passhook.dll
• nsldap32v50.dll
• nsldapssl32v50.dll
• libplc4.dll
• nsldappr32v50.dll
• nss3.dll
• libnspr4.dll
• ssl3.dll
• libplds4.dll
• softokn3.dll
19.2.5. Step 5: Configure the Password Sync Service
Next, set up certificates that
Password Sync
will use to access the Directory Server over SSL:
NOTE
SSL is required for
Password Sync
to send password to Directory Server. The service
will not send the passwords except over SSL to protect the clear text password sent from
the Active Directory machine to the Directory Server machine.
1. Download
certutil.exe
if it is not already installed on the machine. It is available from
ftp://
ftp.mozilla.org/pub/mozilla.org/security/nss/releases/
. See
Chapter 11, Managing SSL
for more
information on SSL.
2. On the Directory Server, export the server certificate.
cd /usr/lib/dirsrv/slapd-
instance_name
certutil -d . -L -n "CA certificate" -a > dsca.crt
3. Copy the exported certificate from the Directory Server to the Windows machine.
4. Open the
Password Sync
installation directory.
cd "C:\Program Files\Red Hat Directory Password Synchronization"
5. Create new
cert8.db
and
key.db
databases on the Windows machine.
certutil.exe -d . -N
6. Import the server certificate from the Directory Server into the new certificate database.
certutil.exe -d . -A -n "DS CA cert" -t CT,, -a -i
\path\to\
dsca.crt
Содержание DIRECTORY SERVER 8.0
Страница 18: ...xviii ...
Страница 29: ...Configuring the Directory Manager 11 6 Enter the new password and confirm it 7 Click Save ...
Страница 30: ...12 ...
Страница 112: ...94 ...
Страница 128: ...110 ...
Страница 190: ...Chapter 6 Managing Access Control 172 4 Click New to open the Access Control Editor ...
Страница 224: ...206 ...
Страница 324: ...306 ...
Страница 334: ...316 ...
Страница 358: ...340 ...
Страница 410: ...392 ...
Страница 420: ...402 ...
Страница 444: ...426 ...
Страница 454: ...436 ...
Страница 464: ...446 ...
Страница 484: ...466 ...
Страница 512: ...494 ...
Страница 522: ...504 ...