Conferences & Events
Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
LDAP - SSL certificate expiration
Our SSL certificate (located on an F5 load balancer) used when accessing our LDAP
directories is about to expire. The directory is Oracle (ne Sun) and the certificate
is Verisign 1024 bits. The F5 does SSL termination. There are several hundred
hosts that bind to the directory on a given day, many representing major systems.
While arranging for testing, we are also trying to gauge the client system (wide variety)
impact of updating to
(a) a Verisign 2048 bit cert
(b) an InCommon 2048 bit cert
While InCommon would our preference, our highest priority is to minimize the number of
client systems/applications that need manual certificate updates.
Anyone have recent experience (or sage advice) with such a maneuver?
Thanks - Gary