[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Using "keytool" to create security certificates for OpenLDAP

Safdar Kureishy wrote:

Thanks Mark.

As a follow-up, I had a question about JLDAP - not sure if that is
considered off-topic on this newsgroup ...

I'm using JLDAP to connect to OpenLDAP, but since the Sun's SSL
security provider doesn't recognize PEM format files (only JKS files),
I was wondering if JLDAP has a security Provider implementation that
would know how to parse PEM files/certificates sent by OpenLDAP to the
client for authentication.

PEM and JKS only describe the format of a X.509 certificate stored on disk. When transmitted over the network in an SSL/TLS handshake they will be in DER format, so translating/reparsing is not an issue.

 -- Howard Chu
 Chief Architect, Symas Corp.       Director, Highland Sun
 http://www.symas.com               http://highlandsun.com/hyc
 Symas: Premier OpenSource Development and Support