[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Force client to use TLS



On Wednesday 28 June 2006 22:08, aubert@iut-bm.univ-fcomte.fr wrote:
> Hello.
>
> I would like to know if it is possible with OpenLDAP to force user to
> use TLS ? I know that I can create a certificate for each user and
> configure OpenLDAP to perform checks on client certificates for an
> incoming TLS session. First, it obliges to generate a certificate for
> each user, what I do not want to do. Second, it is only if a TLS
> session is initiated. What happened if the client does not start a TLS
> session ?
>

How about just:

security ssf=128

?

Regards,
Buchan
-- 
Buchan Milne
ISP Systems Specialist
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

Attachment: pgpQ72e4Aqhm5.pgp
Description: PGP signature