During the establishment of an LDAP SSL connection, client receives the root certificate from the server so that the client can verify the trustworthiness of the server. The client uses the following process to validate the certificate:
It compares the current certificate with any of the previously stored certificate. If the certificates match, the client does not perform further checks, and adds the certificate to the local store. If the certificates do not match, the client continues the validation process.
It checks whether the certificate is trusted. This ensures that a known authority is issuing the certificate.
It checks whether the date on the certificate is valid with reference to the current date.
It checks whether the host name on the certificate matches the date on the server.
If the certificate passes these preceding tests, the client adds the certificate to local store so it can be used for future verification.
If the certificate does not pass the verification process, the application prompts you to either continue the connection or terminate the connection.
To continue the connection, click Yes. The certificate is added to the local store so it can be used for future verification, and the authentication process continues.
To terminate the connection, click No.
To get details about the certificate, click View Certificate to display the Certificate Information dialog box shown in the proceeding figure. If you decide that the certificate is valid, you can click Install Certificate to permanently install the certificate.
NOTE: The Windows workstation local store is different from the SecureLogin LDAPAuth clients certificate store.