[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd not using secure port.

To: "Jason C. Leach" <jleach@ocis.net>
Subject: Re: slapd not using secure port.
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Date: Wed, 7 Jan 2004 21:04:36 +0100
Cc: openldap-software@OpenLDAP.org
In-reply-to: <64023.209.52.90.78.1073504871.squirrel@qmail.ocis.net>
References: <64023.209.52.90.78.1073504871.squirrel@qmail.ocis.net>

Jason C. Leach writes:
> I'm trying to get OpenLDAP working with SSL. I think I have everythin in
> place on the server, but it is not listening on it's secure port (636).

Sure you don't mean TLS (Transport Layer Security)?  That's the
recommended way.  It's basically the same protocol as SSL, except LDAP
clients initiate TLS by sending a special request on the normal LDAP
connection.  This request causes further communication on that
connection to be done securely.

If you want the server to use SSL instead of or in addition to TLS,
start slapd with:

   slapd  -h 'ldap:/// ldaps:///'

which makes it listen on both the standard LDAP port (ldap:///)
and the SSL port (ldaps:///).

-- 
Hallvard

References:
- slapd not using secure port.
  - From: "Jason C. Leach" <jleach@ocis.net>

Prev by Date: Re: Help Me!!!!!!!!
Next by Date: address-based ACLs [WAS: peername + openldap 2.2.4]
Index(es):
- Chronological
- Thread