This page last changed on Jul 26, 2007 by ivan@atlassian.com.

Atlassian User LDAP supports connecting to an LDAP server over SSL/HTTPS.

  1. Import your LDAP server's public certificate into the Confluence JVM keystore

  2. Edit the file in your Confluence install directory, \confluence\WEB-INF\classes\atlassian-user.xml and set the <securityProtocol>ssl</securityProtocol>

  3. Switch the LDAP connection to the SSL port if different from the default LDAP port. If you're using the most common LDAPS port, set <port>636</port>

  4. Add the self-signed root certificate to your default Java keystore with the following command:
    keytool -import -alias serverCert -file <RootCertificate.crt> -keystore %JRE_HOME%/lib/security/cacerts
    

    The keytool will ask you for a password. The default password is "changeit" without the quotes

  5. Verify that the certificate has been added successfully by entering the following command:
    keytool -list -keystore %JRE_HOME%/lib/security/cacerts
    
Document generated by Confluence on Oct 10, 2007 18:48