Learn how to generate and update the internal LDAP certificates on Integrated Analytics
System by running the ap_ldap_cert_renewal tool.
The ap_ldap_cert_renewal tool generates or updates the internal LDAP
certificates for LDAP authentication on all nodes. Also, the script helps to get the information
related to validity of the internal LDAP certificates of all nodes.
ap_ldap_cert_renewal syntax
ap_ldap_cert_renewal [-h | --help] {get | generate | disable}
The following
operations are available:
- -h | --help
- Displays the help message and exits.
- get
- Displays the end date of the internal LDAP certificate of all nodes.
- Example:
ap_ldap_cert_renewal get
Displaying the end date of ldap internal certicate...
ldap internal cert 'ibmapldapint_node0101-fab.crt' validity on node [node0101]: notAfter=Sep 21 11:19:07 2023 GMT
ldap internal cert 'ibmapldapint_node0101-fab.crt' validity on node [node0102]: notAfter=Sep 21 11:19:07 2023 GMT
ldap internal cert 'ibmapldapint_node0101-fab.crt' validity on node [node0103]: notAfter=Sep 21 11:19:07 2023 GMT
ldap internal cert 'ibmapldapint_node0102-fab.crt' validity on node [node0101]: notAfter=Sep 21 11:19:13 2023 GMT
ldapinternal cert 'ibmapldapint_node0102-fab.crt' validity on node [node0102]: notAfter=Sep 21 11:19:13 2023 GMT
ldap internal cert 'ibmapldapint_node0102-fab.crt' validity on node [node0103]: notAfter=Sep 21 11:19:13 2023 GMT
Done
- generate
- Generates or updates the new internal LDAP certificate on all nodes.
- Example:
ap_ldap_cert_renewal generate
Generating new internal ldap certifate...
Done
- disable
- Restores the old internal LDAP certificate on all nodes.
- Example:
ap_ldap_cert_renewal disable
Restoring the internal ldap certificate in original previous state...
Done