|
|
@@ -2,3 +2,29 @@
|
|
|
|
|
|
Fork of Nick Stenning docker-slapd :
|
|
|
https://github.com/nickstenning/docker-slapd
|
|
|
+
|
|
|
+Add support of tls.
|
|
|
+
|
|
|
+### How to use tls
|
|
|
+
|
|
|
+Add `-v some/host/dir:/etc/ldap/ssl` and `--dns=127.0.0.1` to the run command.
|
|
|
+
|
|
|
+`some/host/dir` must contain a least 3 files :
|
|
|
+- `ca.crt` certificate authority certificate
|
|
|
+- `ldap.crt` ldap server certificate
|
|
|
+- `ldap.key` ldap server certificate private key
|
|
|
+
|
|
|
+and optionaly `dhparam.pem` this file is genereted automaticaly if not present.
|
|
|
+
|
|
|
+`--dns=127.0.0.1` allow to use certificate cn correctly.
|
|
|
+
|
|
|
+
|
|
|
+### Example
|
|
|
+
|
|
|
+ docker run --dns=127.0.0.1 \
|
|
|
+ -v /data/ldap/db:/var/lib/ldap \
|
|
|
+ -v /data/ldap/certs/:/etc/ldap/ssl \
|
|
|
+ -e LDAP_DOMAIN=example.com \
|
|
|
+ -e LDAP_ORGANISATION="Example Corp." \
|
|
|
+ -e LDAP_ROOTPASS=toor \
|
|
|
+ -p 389:389 -d osixia/openldap
|
osixia