[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [LDAP-SOFTWARE] OpenLdap/SASL/TLS ...

To: "Celso G. Lima" <celso.lima@usm.edu>
Subject: Re: [LDAP-SOFTWARE] OpenLdap/SASL/TLS ...
From: Ziya Suzen <ziya@ripe.net>
Date: Wed, 19 Feb 2003 21:29:37 +0100
Cc: openldap-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <050301c2d84c$775b2010$02a35f83@conted.usm.edu>
References: <050301c2d84c$775b2010$02a35f83@conted.usm.edu>
User-agent: Mutt/1.3.25i

On 2003-02-19 13:24:04 +0000, Celso G. Lima wrote:
> What is the best way to get all the traffic between an openldap server and
> an openldap client encrypted?

You can use TLS.

> If this involves using SASL, does it have to be configured with kerberos? if

Not for encryption with TLS.

> it does not require kerberos, how do I get it working?

Basically configure '--with-tls' option and start your server
with something like: slapd -h'ldaps:/// ldap:///'

You might want to have a look at

 http://www.openldap.org/faq/data/cache/185.html

and

 http://www.openldap.org/doc/admin/tls.html

for details.

Ziya.

> 
> 
> Thanks,
> 
> Celso
> 
> **************************
> Celso G. Lima
> Systems Administrator
> University of Southern Mississippi
> Office of Technology Resources

References:
- OpenLdap/SASL/TLS ...
  - From: "Celso G. Lima" <celso.lima@usm.edu>

Prev by Date: index error
Next by Date: Re: OpenLdap/SASL/TLS ...
Index(es):
- Chronological
- Thread