[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS and syncrepl

To: Chad Griewahn <cgriewahn@mitssupport.com>
Subject: Re: TLS and syncrepl
From: Aaron Richton <richton@nbcs.rutgers.edu>
Date: Wed, 17 Oct 2007 10:54:41 -0400 (EDT)
Cc: openldap-software@openldap.org
In-reply-to: <47155AA5020000290001B41A@grserv12.gr-press.net>
References: <47155AA5020000290001B41A@grserv12.gr-press.net>

The docs cover this too...

http://www.openldap.org/software/man.cgi?query=slapd.conf&apropos=0&sektion=0&manpath=OpenLDAP+2.3-Release&format=html

syncrepl [starttls=yes|critical]

"The starttls parameter specifies use of the StartTLS extended operation to establish a TLS session before Binding to the provider. If the StartTLS request fails and the critical argument was used, the session will be aborted."

On Wed, 17 Oct 2007, Chad Griewahn wrote:

Is there a way to configure OpenLDAP SLAPD (Linux) syncrepl consumer to always use a TLS based secured connection to it's master provider? The documentation does cover the -Z and-ZZ options as well as the ldap_start_tls_s but I have not been able to make these work from within the SLAPD.conf or LDAP.conf.

References:
- TLS and syncrepl
  - From: "Chad Griewahn" <cgriewahn@mitssupport.com>

Prev by Date: Re: slapd high CPU usage
Next by Date: Re: SyncREPL generates high traffic to calculate delta
Index(es):
- Chronological
- Thread