[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Force client to use TLS

To: Atom Powers <apowers@digipen.edu>
Subject: Re: Force client to use TLS
From: aubert@iut-bm.univ-fcomte.fr
Date: Fri, 30 Jun 2006 09:48:07 +0200
Cc: Buchan Milne <bgmilne@staff.telkomsa.net>, openldap-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <44A3F0DF.7030602@digipen.edu>
References: <20060628220800.nbkvgnvpvipcs0w4@webmail2.iut-bm.univ-fcomte.fr> <200606291520.40692.bgmilne@staff.telkomsa.net> <44A3F0DF.7030602@digipen.edu>
User-agent: Internet Messaging Program (IMP) H3 (4.0.4)

Hello.

Thank you all for your relevant answers. Adding the directive "security" in my configuration file has resolved my problem. Thanks again.

Emmanuel Aubert

Quoting Atom Powers <apowers@digipen.edu>:

Buchan Milne wrote:

On Wednesday 28 June 2006 22:08, aubert@iut-bm.univ-fcomte.fr wrote:

Hello.

I would like to know if it is possible with OpenLDAP to force user to
use TLS ? I know that I can create a certificate for each user and
configure OpenLDAP to perform checks on client certificates for an
incoming TLS session. First, it obliges to generate a certificate for
each user, what I do not want to do. Second, it is only if a TLS
session is initiated. What happened if the client does not start a TLS
session ?


How about just:

security ssf=128


Or: security tls=1

--
Perfection is just a word I use occasionally with mustard.
--Atom Powers--
Systems Administrator
DigiPen Institute of Technology
(425) 895-4443


----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

References:
- Force client to use TLS
  - From: aubert@iut-bm.univ-fcomte.fr
- Re: Force client to use TLS
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>
- Re: Force client to use TLS
  - From: Atom Powers <apowers@digipen.edu>

Prev by Date: Re: JLDAP: No results on multiple synchronous searches
Next by Date: Replica Problem ... permission ?
Index(es):
- Chronological
- Thread