[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Client - Server Authentication Using Certificates

On Fri, 7 May 2004, Laurence wrote:

> Hi,
> I am looking into weather it is possible to do mutual client server
> authentication with LDAP using certificates generated from openssl and I
> have a few questions.
> The server side of things seams fine. What I would like to know is would
> it be possible to use a certificate for the client to authenticate
> itself with the server.
> I have been through the openLDAP documentation and I can't seem to find
> any way to configure the client to use certificates. All I can find is
> that the client authenticates its self with a dn and password.
> If this is possible, some pointers on how to configure the client side
> would be most appreciated.

Yes.  You want SASL/EXTERNAL.  See
http://www.openldap.org/doc/admin22/tls.html for more.