Use SSL connection - Select if you have enabled LDAP over SSL (LDAPS).
APACHE DIRECTORY STUDIO @DN SEARCH PASSWORD
Bind Password - The password of the bind distinguished name that is used to connect to the LDAP directory by the agent.Bind DN - The distinguished name of the bind LDAP user that is used to connect to the LDAP directory by the agent.Root DN - The root distinguished name of the DIT from which users and groups are searched.LDAP Server - Enter the LDAP host and port in the form of host:port.On the LDAP configuration screen, enter the following information:.If you want to enable LDAP over SSL (LDAPS), complete Enable LDAP over SSL, and then continue with this procedure. Accept the default installation folder location, or click Browse to select another location, and click Install.Accept the license agreement and click Next.If the message displays Do you want to allow the following program to make changes to this computer?, click Yes.OktaADAgentSetup.exe OktaDisableSslPinning= 1 Open a command line and run this command:.Click Download Agent and select Download EXE Installer and download it to your Windows server.Review the installation requirements, and then click Set Up LDAP.Click Add Directory > Add LDAP Directory.In the Admin Console, go to Directory > Directory Integrations.On the host server, sign in to Okta using an Okta admin account with Super admin permissions, to access the Admin Console.
APACHE DIRECTORY STUDIO @DN SEARCH INSTALL
Install the Okta LDAP Agent from a command line. To disable support for SSL certificate pinning, perform the procedure below appropriate for your operating system: Windows To allow installation to complete in this case, Okta recommends that you bypass SSL proxy processing by adding the domain to a allowlist.Īlternatively, you can choose to disable SSL pinning as described below, but be aware that doing so disables a security enhancement provided by the agent. This is most likely to occur in environments that rely on SSL proxies. If the log contains the above entry, then you are probably attempting to install Java LDAP agent version 5.3.1 or later and your environment is one in which the agent's support for SSL certificate pinning prevents communication with the Okta server. : : No valid public key found in certificate chain. During agent installation, after clicking Allow Access, the following error message displays:įailed to parse response from Okta and Unable to register the agent.