Question : How to configure OpenLDAP with SSL

I want to configure OpenLDAP with SSL in fedora core 8 for squid authendication. I have configured OpenLDAP without SSL support. OpenLDAP authendication is working fine in squid. Currently we have 100 users in OpenLDAP server. Now I want to configure the OpenLDAP server with SSL support without affecting the previously created users. I am using LDAP Accounts Manager (lam) GUI to add/remove users in OpenLDAP server.

LDAP Accounts Manager will support ssl?

If yes how should I configured lam with ssl support?

Answer : How to configure OpenLDAP with SSL

OK... a couple of items to cover here:

1) Whether or not you access over SSL, the LDAP database will not change. OpenLDAP is the server software, and it reads/writes to a database file -- which you should backup before doing anything else!

2) If you installed OpenLDAP from yum, or most RPM repositories, the SSL libraries should already be compiled in... if not, you'll need to rebuild OpenLDAP with SSL enabled

For help in re-building your OpenLDAP server software, BACKUP YOUR DATABASE and read here:
http://www.openldap.org/doc/admin24/install.html

3) Once the database server (OpenLDAP, specifically) has SSL capabilities compiled in, you'll need to configure the security certificates. Detailed instructions can be found here:
http://www.credentia.cc/certs/howto/openldap.html

4) Assuming you backed up your database, you should be all set -- EVEN IF the rebuild reset your database... which I've NEVER seen it do, but this should NOT be the "year of living dangerously" -- so check as you go along!

Good Luck!

Dan
IT4SOHO