- STUNNEL BETWEEN LDAP AND ACTIVE DIRECTORY INSTALL
- STUNNEL BETWEEN LDAP AND ACTIVE DIRECTORY PASSWORD
STUNNEL BETWEEN LDAP AND ACTIVE DIRECTORY PASSWORD
Whether you would need a username and password to connect to stunnel is not specified, so I am thinking you do not even though fields are provided for their entry on the MFP. This is accomplished at the MFP LDAP section by entering the server IP and specifying the port as 1636. 127.0.0.1 should be replaced with Server IP running stunnel. The instructions there are for a client on the server so all configuration IP addresses are set to loopback (127.0.0.1), you need to modify that in 2 places from what I see.Īccept = 127.0.0.1:1636 127.0.0.1 should be replaced with MFP device IP address (client)Ĭonnect = :636 Note stunnel IS connecting on port 636 to googleĢ) Configure your application (read as 'MFP') to point to ldap://127.0.0.1:1636. Connect LDAP clients to the Secure LDAP service - Google Workspace Admin Help) match up but the difference at the MFP is that stunnel communicates with the client (MFP) on port 1636 by default. Specifically, whether there is a provision for the key file upload.
It would be interesting for you to go through the Command Center and see what happens if you do try and upload the cert file. You cannot make these modifications because the LDAP Client is embedded in the MFP Operating System (A certain Linux version running OPEN_SSL ) and you have no Operating System file access outside of the Command Center API options for Certificates.
I am interested in seeing you get this to work because someone is going to ask me to do it someday soon I fear, so I may run it up the chain for an opinion.Īs for your checklist, I want to be sure we are talking the same method which is the stunnel fallback when you cannot make the needed LDAP Client modifications.
STUNNEL BETWEEN LDAP AND ACTIVE DIRECTORY INSTALL
If I am understanding you correctly, I could theoretically install the certificate on the device itself but an MFP does not make a distinction between certificates and likely would not store the key required to use the certificate? Is that accurate? TIAThat is my fear, that the MFP certificate system doesn't support the direct method so the stunnel fallback option must be used.
Ok, that is some of the information that I have been searching up and down the interwebs for.
0 kommentar(er)
