Need reference to integrate Keycloack with ldaps #47376
Replies: 2 comments
-
|
You should be able to simply add the LDAP certificates to Keycloak's truststores (you can simply add the CA PEM file as a truststore, you don't need to explicitly create a Java truststore for it). Afterwards, Keycloak will be able to connect using ldaps to the LDAP server(s). See https://www.keycloak.org/server/keycloak-truststore for more details. |
Beta Was this translation helpful? Give feedback.
-
|
I would get the public key of your LDAPS server echo | openssl s_client -showcerts -connect 192.168.0.1:636 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > ldaps.pem Then add --truststore-paths=ldaps.pem to your keycloak startup like this ./kc.sh start --verbose --optimized --proxy-headers xforwarded --truststore-paths=ldaps.pem |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
We are working on solution where we need to integrate Keycloack with Client LDAPs server.
We are able to test the connection , it is sucessfull.
Now the main challange is to establish and configure : CA Certificate → Truststore → Keycloak
Truststore creation and Verify truststore.
Please help on this , what changes i have to do in to keycloack side and would be helpful to get integration guide.
Regards
Deepak Sharma
Beta Was this translation helpful? Give feedback.
All reactions