[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: strong authentication



Kai Krebber wrote:
> 
> Howdy!
> 
> I just set up a NS Directoryserver 4.11 (domestic) and now I'm testing it with
> an ldap-testsuite. So far 50 out of 60 testcases work fine.
> What doesn't seem to work is the -M CRAM-MD5 - parameter with ldapadd /
> ldapsearch etc.
> Currently I get back:
> 
> ldap_sasl_cram_md5_bind_s: Strong authentication not supported
> 
> IN the Whitepaper to the DirServer Netscape claims that it supports strong
> authentication with CRAM-MD5.
> In the Admin Server Guide of the NS Server they say "For information on setting
> up SASL, see Netscape Directory Server Programmer's Manual". And in there
> everything looks to me, like I have to programm this support myself.
> 
> Did anybody use -M CRAM-MD5 before? With the NS DirServer? How?
> 
> TIA,
>    Kai Krebber

Kai,

  This is a question for Netscape/iPlanet, not for OpenLDAP. A good newsgroup for questions is snews://secnews.netscape.com/netscape.server.directory, and a good mailing list is dirsec-list@nsdirsecug.org.

  The Netscape/iPlanet server does not support CRAM-MD5. You would need to implement a SASL plugin to support it. Others may have done this - try asking on one of the resources mentioned above.

Rob