[Date Prev][Date Next]
Re: Replication and StartTLS (OpenLDAP 2.0.7)
>>>>> "James" == James Bourne <jbourne@MtRoyal.AB.CA> writes:
James> On Wed, 23 May 2001, Jeff Costlow wrote:
>> So I just got around to setting up replication, and it all
>> works fine (hint, in slapd.conf put the updatedn, updateref,
>> replica and replogfile directives _under_ the database that you
>> want to replicate, not above).
>> But I just realized that slurpd will be sending updates on an
>> unencrypted channel (since I have been preferring StartTLS over
>> a seperate SSL port). Is there a way I can tell slurpd to
>> StartTLS before shoving the update down the pipe? It doesn't
>> appear in the docs anywhere I can see.
James> replica host=<...> tls=yes ...
Is there also a way of saying WHICH tls/ssl port to connect to? I'm
running a total of four servers on my machine (the primary slave/master
and also a slave/master set for testing new versions, starting from
Turbo __ _ Debian GNU Unix _IS_ user friendly - it's just
^^^^^ / /(_)_ __ _ ___ __ selective about who its friends are
/ / | | '_ \| | | \ \/ / Debian Certified Linux Developer
_ /// / /__| | | | | |_| |> < Turbo Fredriksson firstname.lastname@example.org
\\\/ \____/_|_| |_|\__,_/_/\_\ Stockholm/Sweden