Installing LDAP server certificates

To establish an encrypted communication between the MVE server and the LDAP server, add an LDAP server certificate to the cacerts file. The cacerts file is a truststore used to authenticate peers. In the MVE architecture, when MVE is authenticating with an LDAP server, MVE is the client and the LDAP server is the peer.

1. Obtain the LDAP server certificate. For more information, contact your LDAP server administrator.

2. Add the certificate to the truststore.

   1. Save the certificate in a secure location outside of the MVE installation folder.

   2. Run the command prompt as an administrator.

   3. Type cd "installation_dir\jre\bin", where installation_dir is the installation folder of MVE.

   4. Type the following:

      Keytool -import -alias LDAPCert -keystore cacerts -trustcacerts -file certificate_path

      Where certificate_path is the full path of the certificate that you saved in step a. For example, C:\Program Files\Lexmark\LDAPCert.cer

3. Type the keystore password, and if necessary, reset the password.

   Note: The default password is changeit.

4. Type yes to accept the certificate.

5. Restart the Markvision Enterprise service.