summaryrefslogtreecommitdiffstats
path: root/scripts/ds-insecure-disable.sh
blob: ec2b4d52fc73a555207208f96099a83ee55f956e (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19

#!/bin/sh -x

# disable insecure connection
LDAPTLS_CACERT=$HOSTNAME.crt \
    ldapmodify -H ldaps://$HOSTNAME:636 -x -D "cn=Directory Manager" -w Secret123 << EOF
dn: cn=config
changetype: modify
replace: nsslapd-allow-anonymous-access
nsslapd-allow-anonymous-access: rootdse
-
replace: nsslapd-minssf
nsslapd-minssf: 56
-
replace: nsslapd-require-secure-binds
nsslapd-require-secure-binds: on
-
EOF

systemctl restart dirsrv@pki-tomcat.service
generated by cgit (git 2.34.1) at 2024-05-01 17:15:33 +0000