[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Center for Internet Security benchmark for OpenLDAP

Howard Chu <hyc@symas.com> wrote:

>  > Unfortunately administrators cannot follow this recommendation, since
>  > slurpd and syncrepl replication requires access to a plaintext password
>  > (for password-based authentication mechanisms). You probably need to
>  > place stronger emphasis on certificate or ticket-based authentication
>  > if you want to avoid this issue.

Well, syncrepl + certificates is not very well documented. I plan to add
FAQ entries for that.

Emmanuel Dreyfus