Problem:

LDAP-Auth for external Tools via 7636 and NGINX ssl proxy

This gives a fixed DNS alias with the correct port 636 and a valid certificate. The proxy then also redirects the UCS primary port 7636.

Solution:

Example for Apache-Site with Basic Auth:

 AuthType Basic
 AuthBasicProvider ldap
 AuthName "SCHEIN"
 AuthLDAPURL "ldaps://ldaps.schein.com:636/cn=users,dc=schein,dc=com?uid"
 AuthLDAPInitialBindAsUser on
 AuthLDAPCompareAsUser on
 AuthLDAPInitialBindPattern (.*) uid=$1,cn=users,dc=schein,dc=com
 Require valid-user

See also: