Remote Support
Remote Access
Monitoring and Management
Presentation
Remote Work
Standard
Business
Enterprise
Creating a Keystore for LDAP SSL
SimpleHelp allows you to authenticate users against an Active Directory server using LDAP. For secure communications with the Active Directory server you may wish to configure the communications to be encrypted using SSL. This guide describes how you can export your certificate from your Active Directory server, and import it for use in SimpleHelp.
Exporting an AD Certificate
As an Administrative user on your Active Directory server:
- Open the Microsoft Management Console by running mmc.exe.
- Add the Certificates snap-in for the Computer Account (select the Local Computer).
- Locate your certificate in the resulting tree. If you are using a self-signed certificate then this will appear under the Personal folder.
- Right-click on the certificate, select All Tasks > Export.
- Export the certificate (without the private key but will all associated trusted certificates) in Base 64 format.
- Copy the resulting certificate file to your SimpleHelp server.
Creating a Keystore for SimpleHelp
Once the certificate has been exported and copied to your SimpleHelp server you will be able to create a keystore with this certificate that SimpleHelp can use to access your Active Directory server.
- To do this you will use the keytool (keytool.exe on Windows) utility supplied with your Java runtime with the following command:
keytool -import -alias simplehelp -file -keystore shdomain.keystore
Enter a secure password for your keystore. This will create a keystore file calledshdomain.keystore.
Copy this keystore to a readable location on your SimpleHelp server and reference it from the LDAP SSL configuration in the Administrative Console.