Community Articles

Find and share helpful community-sourced technical articles.
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
avatar
Rising Star

When configuring LDAPS in HDP its common to see wrong certificates used or certificates without the correct chain.

To ensure the correct chain of certificates is used when configuring LDAPS you can use openssl to read the certificate from the server and save it to a file. This file can them be imported into, for example, the Ambari truststore.

echo -n | openssl s_client -connect <ad-server>:636 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > /root/ldaps-cert.pem
3,325 Views
Comments
avatar

it is worked for me.. thanks.

Version history
Last update:
‎09-16-2022 01:40 AM
Updated by:
Contributors