Does anyone has successes in such kind of integration? Because Google LDAP service requires certificate authentication I can't point Jenkins directly to the ldaps://
ldap.google.com. I have tried to use stunnel but without success.
# cat /etc/stunnel/ldap.conf
[ldap]
client = yes
accept = 127.0.0.1:389
connect = ldap.google.com:636
cert = /etc/stunnel/gldap.crt
key = /etc/stunnel/gldap.key
Also I have tried to import google certificate and private key to my own keystore
$ openssl pkcs12 -export -out ldap.google.com.pkcs12 \
-inkey gldap.key -in gldap.crt
$ keytool -v -importkeystore -srckeystore ldap.google.com.pkcs12 \
-srcstoretype PKCS12 -destkeystore cacerts -deststoretype JKS
and point Jenkins to it
-Djavax.net.ssl.keyStore=/var/jenkins_home/.cacerts/cacerts -Djavax.net.ssl.keyStorePassword=changeit
But without success. Did I miss something?