[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Re: Re: How to Force TLS/SSL connection Only ?



Hi,

On Monday 25 November 2002 03:00, you wrote:
> Sorry,the "bind_simple_unprotected"  can not be identified when starting
> ldap server.:-(
I copied it from OpenLDAP 2.1.8s slapd.conf man page.
Maybe you need to upgrade

You may also try to use the ssf clauses in the access statements

> My goal is that ONLY the clients with certificates signed by my rootCA can
> access my ldap server,which also has certificate signed by the same
> rootCA,and my ldap server is configured to support TLS/SSL , demands to
> verify clients,and connect with clients in TLS/SSL in port 636.
> Is it possible ?
Yes.
If you only want to do it with LDAPS, you can start slapd only with the 
appropriate parameter (ldaps:/// IIRC).

Yours
Peter

-- 
Peter Marschall     |   eMail: peter.marschall@mayn.de
Scheffelstraße 15   |          peter.marschall@is-energy.de
97072 Würzburg      |   Tel:   0931/14721
PGP:  D7 FF 20 FE E6 6B 31 74  D1 10 88 E0 3C FE 28 35