[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: newbie question - LDAP and Active Directory

To: Dave Snoopy <kingsnoopy7@yahoo.com>
Subject: Re: newbie question - LDAP and Active Directory
From: Andreas Hasenack <andreas@conectiva.com.br>
Date: Thu, 9 May 2002 18:49:54 -0300
Cc: openldap-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <20020509212201.3374.qmail@web21206.mail.yahoo.com>
References: <20020509212201.3374.qmail@web21206.mail.yahoo.com>
User-agent: Mutt/1.3.28i

Em Thu, May 09, 2002 at 02:22:01PM -0700, Dave Snoopy escreveu:
> ldapsearch to do this. The problem is that I'm using
> the '-x' option for simple security. The result is
> that I have to send my administrator password across
> the network in clear text!
> 
> I'd like to be able to do this using some kind of
> secure LDAP so that I don't have to expose my password
> like this. Does anyone know how to do this or have
> some experience with this? Any information at all
> would be helpful.

Just enable SSL on the windows machine and use -H ldaps://
with ldapsearch.

To enable SSL on win2k, you have to install the CA tools,
create a CA and request a certificate. I did this with
mmc and the computer certificates snapin. After this,
port 636 will be open on the windows server and ready for
connections :)

(You may need a reboot or two, don't forget this is windows).

Follow-Ups:
- A good Howto
  - From: Josef Allen <josallen@cs.fsu.edu>

References:
- newbie question - LDAP and Active Directory
  - From: Dave Snoopy <kingsnoopy7@yahoo.com>

Prev by Date: newbie question - LDAP and Active Directory
Next by Date: Re: newbie question - LDAP and Active Directory
Index(es):
- Chronological
- Thread