Configuring SSL or TLS certificates

If you use an LDAP directory server for user authentication and you want to enable SSL encryption or TLS authentication, you must configure your SSL or TLS certificate. QRadar LDAP authentication uses TLS 1.2.


  1. Using SSH, log in to your system as the root user.
  2. Type the following command to create the /opt/qradar/conf/trusted_certificates/ directory:
    mkdir -p /opt/qradar/conf/trusted_certificates
  3. Copy the SSL or TLS certificate from the LDAP server to the /opt/qradar/conf/trusted_certificates directory on your system.
  4. Verify that the certificate file name extension is .cert, which indicates that the certificate is trusted.
    The QRadar system loads only .cert files.