[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: TLS fails to bind (Please help)
I apologize for erroneously using "TLS" in lieu of "StartTLS". However,
I'm convinced that my interpretation of the problem is correct: I
understand he's expecting StartTLS (e.g. option -Z in client tools) to use
port 636.
p.
> Pierangelo Masarati wrote:
>>
>> TLS has nothing to do with port 636.
>
> Please let us stay precise here and don't use "TLS" as an acronym for
> "StartTLS extended operation".
>
> Off course TLS could be used on port 636 which is the default port for
> URI scheme LDAPS:// since TLSv1 is the IETF successor of SSLv3. Whether
> SSLv3 or TLSv1 is used is negotiated between client and server.
>
> And off course StartTLS extended operation starts an encrypted tunnel
> in-band an existing LDAP connection (URI scheme LDAP://, default port
> 389).
>
> Ciao, Michael.
>
--
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it
SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497