Because I’m a masochist, I’m trying to enable integration with AD in the User Management->Directories module. Also while doing this, I’m trying to enable SSL. It appears that the certificate trust is handled by asterisk, and not the OS (not entirely sure). Anyways I can see that the client/freepbx doesn’t like my awesome CA server I setup for AD, I’m verifying this with a pcap on the domain controller where I see “Unknown CA” from the PBX. How do I go about importing the CA for my AD?
Do I just need to go through the process of creating a CSR under Certificate Management, sign it with my local CA, and then import it? I have done that, but I have either imported the cert incorrectly, or I’m not telling the asterisk piece what certificates to use.
Non-SSL user directories from ldap/ad work fine over 389.
Also, where should I look for ldap logging? I can’t seem to find anything in /var/log