kerberos with connection to tls openldap

Chris Hecker checker at
Thu May 16 00:36:08 EDT 2013

Any progress on getting the client cert SASL EXTERNAL stuff in so we 
don't need a password on the two accounts?  I know there was a patch for 
this posted a while back that was too verbose for your liking...


On 2013-05-15 12:38, Greg Hudson wrote:
> On 05/15/2013 01:34 PM, Augustin Wolf wrote:
>> Is there a way to enforce kerberos to use TLS/SSL while communicating
>> to OpenLDAP?
> You can use an ldaps:// URL, and specify TLS parameters in ldap.conf(5)
> if any are needed.
> We don't yet support using StartTLS over the regular LDAP port.
> ________________________________________________
> Kerberos mailing list           Kerberos at

More information about the Kerberos mailing list