21.2 Validating an LDAP SSL Server Certificate

During LDAP connection, client receives the root certificate from the server so that client can verify the trustworthiness of the server. The client uses the following process to validate the certificate:

If the certificate passes these preceding tests, the client adds the certificate to local store so it can be used for future verification.

If the certificate does not pass the verification process, the application prompts you to either continue the connection or terminate the connection.

Figure 21-1 Certificate Verification