[Date Prev][Date Next] [Chronological] [Thread] [Top]

simple bind over TLS



 Hi!

 I've set up a Linux/OpenLDAP server to require bind before
operations and a Solaris 8 client to perfome bind before operations.
Everything works fine.

 Now I'd like to make the OpenLDAP server require that the simple bind
takes place over a TLS connection (except when connecting from localhost).
More to the point I want to implement RFC2829 $6.2.

 The problem is that on the Solaris machine the program that sets up
ldap (ldapclient) doesn't have any options on this, so I assume that
it will automatically use TLS when the server requires it.

 So, how do I require TLS ?

 The server already has these lines in slapd.conf:

TLSCipherSuite HIGH:MEDIUM
TLSCertificateFile /usr/local/openldap/etc/openldap/server.pem
TLSCertificateKeyFile /usr/local/openldap/etc/openldap/server.pem

bye, George Krajcsovits