Major Hayden a676e37a84 Docs overhaul

* Docs are now ordered by STIG ID number to make them easier to browse.
* Deployer notes are better organized.
* Script + CSV added for automated documentation generation.

Implements: blueprint security-hardening

Change-Id: Ib87bec701eddf1601574f4e027f301c775e5e1cd

2015-10-14 13:42:52 +00:00

666 B

Raw Blame History

V-38626: The LDAP client must use a TLS connection using trust certificates signed by the site CA.

The tls_cacertdir or tls_cacertfile directives are required when tls_checkpeer is configured (which is the default for openldap versions 2.1 and up). These directives define the path to the trust certificates signed by the site CA.

Details: V-38626 in STIG Viewer.

666 B Raw Blame History

V-38626: The LDAP client must use a TLS connection using trust certificates signed by the site CA.

Notes for deployers

666 B

Raw Blame History