[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Client - Server Authentication Using Certificates

To: Laurence <Laurence.Field@cern.ch>
Subject: Re: Client - Server Authentication Using Certificates
From: Igor Brezac <igor@ipass.net>
Date: Fri, 7 May 2004 13:13:29 -0400 (EDT)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <409BBAF5.40005@cern.ch>
References: <409BBAF5.40005@cern.ch>


On Fri, 7 May 2004, Laurence wrote:

> Hi,
>
> I am looking into weather it is possible to do mutual client server
> authentication with LDAP using certificates generated from openssl and I
> have a few questions.
>
> The server side of things seams fine. What I would like to know is would
> it be possible to use a certificate for the client to authenticate
> itself with the server.
> I have been through the openLDAP documentation and I can't seem to find
> any way to configure the client to use certificates. All I can find is
> that the client authenticates its self with a dn and password.
>
> If this is possible, some pointers on how to configure the client side
> would be most appreciated.

Yes.  You want SASL/EXTERNAL.  See
http://www.openldap.org/doc/admin22/tls.html for more.

-- 
Igor

Follow-Ups:
- Re: Client - Server Authentication Using Certificates
  - From: Laurence <Laurence.Field@cern.ch>

References:
- Client - Server Authentication Using Certificates
  - From: Laurence <Laurence.Field@cern.ch>

Prev by Date: Re: Building OpenLdap 2.x prerequisite and select() error.
Next by Date: Openldap and bdb monitoring
Index(es):
- Chronological
- Thread