[30311] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Using LDAP backend with start_tls

daemon@ATHENA.MIT.EDU (Klaus Heinrich Kiwi)
Wed Sep 17 17:23:45 2008

From: Klaus Heinrich Kiwi <klausk@linux.vnet.ibm.com>
To: Kerberos@mit.edu
Date: Wed, 17 Sep 2008 18:21:47 -0300
Message-Id: <1221686507.9420.28.camel@klausk.br.ibm.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hi everyone,

 I was wondering how can I use the LDAP backend over a TLS connection.
Looking at the krb5.conf file man page, looks like there is no option
covering this and I'm assuming that simply using ldaps:// as the
ldap_servers URI will toggle SSL over port 636 instead of TLS at port
389.

ldapi://socket will initiate a unix socket connection
ldap://host will start an unsecured connection at port 389
ldaps://host will start SSL through port 636

Is there a way to START_TLS over port 389?

Thanks,

 -Klaus

-- 
Klaus Heinrich Kiwi <klausk@linux.vnet.ibm.com>
Linux Security Development, IBM Linux Technology Center

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[30311] in Kerberos

Using LDAP backend with start_tls

daemon@ATHENA.MIT.EDU (Klaus Heinrich Kiwi)Wed Sep 17 17:23:45 2008

daemon@ATHENA.MIT.EDU (Klaus Heinrich Kiwi)
Wed Sep 17 17:23:45 2008