cancel
Showing results for 
Search instead for 
Did you mean: 
spkslattery
Level 10

Web Reporter 5.2 and AD signed communications

Hi,

I am having trouble getting my WR52 installation on a member 2008 32-bit server to communicate with 2008 DC's which are configured to require signed communcations.

When I setup the registered LDAP/AD severs in ePO454, I have the option to specify SSL and I use port 636 instead of 389.

But in WR52, I can specify port 636 but there isnt' the equivalent option for using SSL .

Thank you in advance.

0 Kudos
3 Replies
spkslattery
Level 10

Re: Web Reporter 5.2 and AD signed communications

I have submitted an FMR for this.

0 Kudos
eelsasser
Level 15

Re: Web Reporter 5.2 and AD signed communications

As a temporary work-around, I have been able to use stunnel to wrap encryption around the LDAP session:

This is how I configured stunnel to do LDAPS for Web Reporter. My Web Reporter runs on Linux, but the idea is the same for Windows.
Hope it helps.
---

Install stunnel on the OS and configure it like this:

[root@CentOS stunnel]# cat /etc/stunnel/stunnel.conf
client=yes
verify=0
[LDAPS]
accept  = 636
#192.168.2.80 is the IP of the AD server that will accept LDAPS connections
connect = 192.168.2.80:636
TIMEOUTclose = 0


Configure stunnel so it runs every time the reporter server boots:
[root@CentOS stunnel]# cat /etc/rc.d/rc.local
#!/bin/sh
/usr/sbin/stunnel

Then configure the directory in web reporter to connect to itself on port 636:

Capture.PNG

Now all the traffic is encrypted to LDAP.

There are windows versions of stunnel at stunnel.org for use on a windows web reporter server. I haven't tried them, but the idea is the same. You just need to start stunnel as a service which is in the FAQ on stunnel.org.


Hope it helps.

0 Kudos
spkslattery
Level 10

Re: Web Reporter 5.2 and AD signed communications

Thanks Erik, I'll give it a try.

0 Kudos