[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: configuring the master slapd for replication / credentials question.



Quoting Jatin Nansi <jatin.nansi@timesgroup.com>:

>  replica host=slave.example.com:389
>                 binddn="cn=Replicator,dc=example,dc=com"
>                 bindmethod=simple credentials=secret
> 
> what i want to know is can i cypt the credentials provided,
> so it is not in text format (since that makes the slave very vernerable).
> and what is meant by strong authentication? SASL / Kerberos?
> If so how is that to be configured into slapd.conf?

http://www.bayour.com/LDAPv3-HOWTO.html#3.5.5.Setting up secure replication|outline

> Could any1 kindly provide examples?

replica host=slave.example.com:389
        tls=critical
        bindmethod=sasl
        saslmech=GSSAPI