What do you need on the Vault to support LDAP over SSL?
What do you need on the Vault to support LDAP over SSL?
To support LDAP over SSL on the Vault, you need the CA Certificate(s) that were used to sign the External Directory certificate. This ensures that the Vault can establish a secure connection with the external directory by validating the certificate chain.
The answer is A, here it is mentioned: Configure LDAP over SSL connections (recommended): On the Vault machine, import the CA certificate that signed the certificate used by the external directory into the Windows certificate store to facilitate an SSL connection between the vault and the external directory (recommended).
I think A is correct! From CyberArk Docs: "On the Vault machine, import the CA Certificate that signed the certificate used by the External Directory into the Windows certificate store to facilitate an SSL connection between the Vault and the External Directory (recommended)."
In order to have an LDAPs integration with the Vault, You must have the Organizational Root-CA cert in the Trusted-Root folder.
Shouldn't the answer be A?
A is correct answer.
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PAS%20INST/Configuring-Transparent-User-Management.htm?tocpath=Administrator%7CUser%20Management%7CTransparent%20user%20management%20using%20LDAP%7C_____1#ConfigureLDAPoverSSLconnectionsrecommended
A is correct
A is correct
A is correct
A is correct