[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: forcing encryption for external server access while allowing unencrypted localhost connections

Dieter Kluenter wrote:

Let phpLDAPadmin contact slapd via socket, that is via ldapi://


Hi Dieter,

Well the local socket wants to use TLS, too:

$ ldapsearch -x -H ldapi:///usr/local/var/run/ldapi
# extended LDIF
# LDAPv3
# base <> with scope sub
# filter: (objectclass=*)
# requesting: ALL

# search result
search: 2
result: 13 Confidentiality required
text: confidentiality required

# numResponses: 1

I have this in my slapd.conf Global configuration section:

security ssf=128