[Date Prev][Date Next] [Chronological] [Thread] [Top]

session with expired certificate

To: ietf-ldapbis@OpenLDAP.org
Subject: session with expired certificate
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Date: Fri, 6 Jun 2003 14:46:32 +0200

The thread about the bindDN being deleted reminded me of something:

What happens if the client or server certificate expires during the
session?  Should the session revert to 'unknown' auth state, as was
suggested in the bindDN thread?  Should the server or client (depending
on which certificate expired) close the TLS session, if any?

BTW, is this the same as if the bindDN names a strongAuthenticationUser
and binds with its certificate, or is that a third case?

-- 
Hallvard

Follow-Ups:
- Re: session with expired certificate
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: RE: What Does De-Reference Mean?
Next by Date: RE: What Does De-Reference Mean?
Index(es):
- Chronological
- Thread