Uploaded image for project: 'Couchbase Documentation'
  1. Couchbase Documentation
  2. DOC-6101

More info TLS certificates in LDAP configuration

    XMLWordPrintable

Details

    • Task
    • Resolution: Fixed
    • Major
    • None
    • Mad Hatter
    • security
    • None

    Description

      The LDAP settings allow providing a certificate. The documentation does not explain, however, what certificate needs to be provided and what it is its purpose.

      According to recent discussion, the purpose of the certificate is to validate the identity of the LDAP server. The cluster certificate can be used for that purpose only if it was signed by the same CA authority as the LDAP server (needs to be confirmed). 

      It can also be noted that Couchbase provides no possibility to supply a client certificate for the TLS connection to the LDAP server, so it works only when client certificate verification on the LDAP server is turned off.

      Attachments

        Issue Links

          Activity

            People

              tony.hillman Tony Hillman (Inactive)
              vaidas.gasiunas Vaidas Gasiunas (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                PagerDuty