Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
devel:documentation:wizards [2021/02/26 09:50]
svandav 		devel:documentation:wizards [2021/02/26 12:52]
svandav [Certificate]
Line 50: Line 50:
 {{ :devel:documentation:wizard_ad_01.png?600 |}} {{ :devel:documentation:wizard_ad_01.png?600 |}}
  
 +==== Certificate ====
 +
 +In the second step, the wizard can **download the certificate from the AD** and save it to the server. First, the wizard verifies that your IdM server has the correct certificate installed for communication with AD. Next, the certificate is searched directly in AD. The goal is to **find a certificate issued by the highest possible authority**. The found certificate needs to be inserted into the **trusted certificate store** and the IdM restarted. The reason why we do not recommend using a server certificate directly in the trusted certificate store (it would be functionally sufficient) is its shorter validity (typically only 1 year).
 +
 +{{ :devel:documentation:wizard_ad_02.png?600 |}}
 +
 +==== Permissions ====
 +
 +
 +
 +{{ :devel:documentation:wizard_ad_03.png?600 |}}
 +
 +==== Additional data ====
 +
 +
 +
 +{{ :devel:documentation:wizard_ad_04.png?600 |}}
 +
 +==== Attributes ====
 +
 +
 +
 +{{ :devel:documentation:wizard_ad_05.png?600 |}}
 +
 +==== Conclusion ====
 +
 +
 +
 +{{ :devel:documentation:wizard_ad_06.png?600 |}}
  • by svandav