Adding LDAPS Certificate to the Dashboard v3 Java Trust Store

Export your LDAPS certificate in .pfx format. The following third-party guide illustrates the process:
https://social.technet.microsoft.com/wiki/contents/articles/2980.ldap-over-ssl-ldaps-certificate.aspx#Exporting_the_LDAPS_Certificate_and_Importing_for_use_with_AD_DS

Copy the exported file to your Dashboard server.

Navigate to the Dashboard /jre/bin directory in an administrative cmd session or terminal.

• Windows default path:
  C:\Program Files\CCPD\jre\bin

• Linux default path:
  /usr/local/CCPD/jre/bin

Run the following command:

• For the -alias option, you can assign any value (such as ccpdldaps)

• For the -file option, specify the full path to the LDAPS server certificate (ex. C:\my-ldaps-certificate.pfx)

• For the -keystore option, specify the full path to the Dashboard cacerts file.

  • Windows default location:
    C:\Program Files\CCPD\jre\lib\security\cacerts

  • Linux default location:
    /usr/local/CCPD/lib/security/cacerts

When prompted, enter the Dashboard keystore password changeit.

When asked to trust this certificate, enter “yes”. The following message appears after a successful addition:
Certificate was added to keystore.

Restart the CIS-CAT Pro Dashboard application service to apply the new configuration.

• Windows:
  services.msc → Restart the CCPD Windows service

• Linux:
  sudo systemctl restart CIS-CAT_Pro_Dashboard