As explained in User federation, PKI Hub supports integration with LDAP providers. Follow the steps below if the connection with an LDAP provider is secured and you have updated the LDAPS certificate.
To update the LDAPS certificate validation chain
- Run the clusterctl database info command.
- Copy the certificate chain from the console output and save it to a file.
- Edit the file and update the CA certificates in the LDAPS certificate validation chain.
- All LDAP certificates in the file should be in PEM format.
- If the file contains certificates not related to LDAPS, do not remove them.
- Run the clusterctl database set command to import the updated file.
- Redeploy all deployed solutions.