kerberos with connection to tls openldap

Chris Hecker checker at d6.com
Thu May 16 00:36:08 EDT 2013


Any progress on getting the client cert SASL EXTERNAL stuff in so we 
don't need a password on the two accounts?  I know there was a patch for 
this posted a while back that was too verbose for your liking...

Chris


On 2013-05-15 12:38, Greg Hudson wrote:
> On 05/15/2013 01:34 PM, Augustin Wolf wrote:
>> Is there a way to enforce kerberos to use TLS/SSL while communicating
>> to OpenLDAP?
>
> You can use an ldaps:// URL, and specify TLS parameters in ldap.conf(5)
> if any are needed.
>
> We don't yet support using StartTLS over the regular LDAP port.
>
> ________________________________________________
> Kerberos mailing list           Kerberos at mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>


More information about the Kerberos mailing list