[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL EXTERNAL with URLs other than ldapi://

Igor Brezac wrote:

Btw, does somebody have the "EXTERNAL" sasl mech. available via ldap:// or
ldaps:// ???

I have it working. This will only work for ldaps://. SASL EXTERNAL uses TLS for authentication among other things. SASL EXTERNAL is also available over ldapi.

SASL EXTERNAL works whenever TLS is being used and a client certificate is configured. So it will work for ldaps:// by itself and also ldap:// with StartTLS.

 -- Howard Chu
 Chief Architect, Symas Corp.       Director, Highland Sun
 http://www.symas.com               http://highlandsun.com/hyc
 Symas: Premier OpenSource Development and Support