[Date Prev][Date Next]
Re: Client - Server Authentication Using Certificates
On Fri, 7 May 2004, Laurence wrote:
> I am looking into weather it is possible to do mutual client server
> authentication with LDAP using certificates generated from openssl and I
> have a few questions.
> The server side of things seams fine. What I would like to know is would
> it be possible to use a certificate for the client to authenticate
> itself with the server.
> I have been through the openLDAP documentation and I can't seem to find
> any way to configure the client to use certificates. All I can find is
> that the client authenticates its self with a dn and password.
> If this is possible, some pointers on how to configure the client side
> would be most appreciated.
Yes. You want SASL/EXTERNAL. See
http://www.openldap.org/doc/admin22/tls.html for more.