Introduction

LDAP authentication for the JOC Cockpit is offered from the JS7 - LDAP Identity Service and relies on a connection between the JS7 - REST Web Service API and the LDAP Server.

• This connection should be secured, otherwise it is vulnerable for example It is desirable that this connection is secured as it would otherwise be vulnerable e.g. to man-in-the-middle attacks.
• The LDAP Server connection can be secured using two commonly available protocols "LDAP over TLS" (STARTTLS) and "LDAP over SSL" (LDAPS).
• General information how to configure LDAP connections is available from the JS7 - LDAP Identity Service Configuration article.

This article describes the configuration of STARTTLS for use with the JS7 REST Web Service API and and a certificate truststore, as well as providing an example for use with

...

LDAPS

...

.

Secure Connection Schemes

...