Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  15. Appendix B: PowerExchange Glossary

Example: Level 1 LDAP Security - Secure OpenLDAP Configuration with Encryption and Server Authentication

Example: Level 1 LDAP Security - Secure OpenLDAP Configuration with Encryption and Server Authentication

The following example shows the DBMOVER statements for a secured OpenLDAP configuration with encryption and server authentication:
SECURITY=(1,N,LDAP,OPEN_LDAP) LDAP_HOST=(myldapserver,
636
) LDAP_BIND_DN="uid=hmiller,ou=People,dc=example,dc=com" LDAP_BIND_EPWD=47D95F9932FB4E56 LDAP_BASE=("ou=People,dc=example,dc=com")
LDAP_OPENSSL=(CAPATH=/pwx_truststore)
In this example, the fourth parameter of the SECURITY statement specifies to load OpenLDAP client libraries. The LDAP_OPENSSL statement enables encryption and configures Transport Level Security (TLS) to use the truststore directory
/pwx_truststore
. The truststore directory holds Certificate Authority certificate files, in PEM format, that allow PowerExchange to validate a signed certificate returned by the LDAP server.
The LDAP_HOST statement directs the encrypted traffic to the secure port 636 of the LDAP server.