{"id":76186,"date":"2023-06-05T13:11:54","date_gmt":"2023-06-05T17:11:54","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&p=76186"},"modified":"2023-06-05T13:11:54","modified_gmt":"2023-06-05T17:11:54","slug":"connect-to-ldap-with-tls-ssl","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl","title":{"rendered":"Connect to LDAP with TLS\/SSL"},"content":{"rendered":"\n

黑料海角91入口’s LDAP-as-a-Service allows users to connect using StartTLS (ldap:\/\/ldap.jumpcloud.com<\/a>:389) or TLS \/ SSL (ldaps:\/\/ldap.jumpcloud.com<\/a>:636).\u00a0 Many client applications\/appliances require you to upload a Peer Certificate Authority when connecting to TLS \/ SSL. You can run the following commands from a Mac, Windows, or Linux terminal to acquire this at any time.\u00a0<\/p>\n\n\n\n

<\/p><\/div>

Note:<\/strong> \n

OpenSSL is not pre-installed on Windows machines. The OpenSSL Installer for Windows can be found here:\u00a0https:\/\/slproweb.com\/products\/Win32OpenSSL.html<\/a>.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

The following command outputs the certificate authority <\/strong>to the \/tmp\/ directory as jumpcloud.chain.pem<\/code>.<\/em><\/p>\n\n\n\n

echo -n | openssl s_client -connect ldap.jumpcloud.com<\/a>:636 -showcerts | sed -ne ‘\/-BEGIN CERTIFICATE-\/,\/-END CERTIFICATE-\/p’ > \/tmp\/jumpcloud.chain.pem<\/code><\/p>\n\n\n\n

The following command outputs only the 黑料海角91入口 LDAP Server certificate<\/strong> to the \/tmp\/ directory as jumpcloud.ldap.pem<\/code>.<\/p>\n\n\n\n

echo -n | openssl s_client -connect ldap.jumpcloud.com<\/a>:636 | sed -ne ‘\/-BEGIN CERTIFICATE-\/,\/-END CERTIFICATE-\/p’ > \/tmp\/jumpcloud.ldap.pem<\/code><\/p>\n\n\n\n

<\/p><\/div>

Note:<\/strong> \n

This is a GoDaddy signed certificate.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

Depending on the LDAP client configuration requirements, the GoDaddy Root CA and Intermediate CA certificates may need to be saved to the local Trusted Root Certificate store. Both of these certificates can be obtained from the GoDaddy website repository<\/a>.<\/strong>
\"\"<\/p>\n\n\n\n

LDAP Client Certificate Configuration Examples<\/h2>\n\n\n\n

Softerra LDAP Browser Certificate Store<\/strong><\/p>\n\n\n\n

<\/p><\/div>

Note:<\/strong> \n

This LDAP client has a Certificate Store that you can use to upload Trusted Root Certificate Authorities<\/strong> and Intermediate Certificate Authorities<\/strong>. Many clients only provide a single Trusted Root Certificate<\/strong> store. See your vendor documentation for details on the required client configuration and certificate format(s) accepted.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

\"\"<\/p>\n\n\n\n

Duo Directory Sync LDAP Certificate Chain<\/strong><\/h2>\n\n\n\n

<\/p><\/div>

Note:<\/strong> \n

The Duo Directory Synchronization configuration requires you to enter the full PEM formatted certificate chain in the SSL CA Certs<\/strong> section. The full PEM formatted certificate chain contents can be acquired using the first command mentioned\u00a0at the beginning of this article. <\/strong>The command outputs a file called \u2018jumpcloud.chain.pem\u2019, which contains all certificates and includes the —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– references for each certificate in the chain.\u00a0<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

\"\"<\/p>\n","protected":false},"excerpt":{"rendered":"

黑料海角91入口’s LDAP-as-a-Service allows users to connect using StartTLS (ldap:\/\/ldap.jumpcloud.com:389) or TLS \/ SSL (ldaps:\/\/ldap.jumpcloud.com:636).\u00a0 Many client applications\/appliances require you to […]<\/p>\n","protected":false},"author":204,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2845,2896],"support_tag":[],"coauthors":[2838],"acf":[],"yoast_head":"\nConnect to LDAP with TLS\/SSL - 黑料海角91入口<\/title>\n<meta name=\"description\" content=\"Discover how to connect to LDAP with TLS\/SSL.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Connect to LDAP with TLS\/SSL\" \/>\n<meta property=\"og:description\" content=\"Discover how to connect to LDAP with TLS\/SSL.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl\" \/>\n<meta property=\"og:site_name\" content=\"黑料海角91入口\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"jenniferklein\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl\",\"url\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl\",\"name\":\"Connect to LDAP with TLS\/SSL - 黑料海角91入口\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg\",\"datePublished\":\"2023-06-05T17:11:54+00:00\",\"dateModified\":\"2023-06-05T17:11:54+00:00\",\"description\":\"Discover how to connect to LDAP with TLS\/SSL.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Connect to LDAP with TLS\/SSL\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"黑料海角91入口\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"黑料海角91入口\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"黑料海角91入口\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Connect to LDAP with TLS\/SSL - 黑料海角91入口","description":"Discover how to connect to LDAP with TLS\/SSL.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl","og_locale":"en_US","og_type":"article","og_title":"Connect to LDAP with TLS\/SSL","og_description":"Discover how to connect to LDAP with TLS\/SSL.","og_url":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl","og_site_name":"黑料海角91入口","og_image":[{"url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes","Written by":"jenniferklein"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl","url":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl","name":"Connect to LDAP with TLS\/SSL - 黑料海角91入口","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg","datePublished":"2023-06-05T17:11:54+00:00","dateModified":"2023-06-05T17:11:54+00:00","description":"Discover how to connect to LDAP with TLS\/SSL.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#primaryimage","url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg","contentUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/godaddy-certificate-chain.jpeg"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/connect-to-ldap-with-tls-ssl#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Connect to LDAP with TLS\/SSL"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"黑料海角91入口","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"黑料海角91入口","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"黑料海角91入口"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/76186"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/204"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/76186\/revisions"}],"predecessor-version":[{"id":82249,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/76186\/revisions\/82249"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=76186"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=76186"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=76186"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=76186"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}