ldapclient and eDirectory
From: Algaeman (algaeman_at_nowhere.com)
Date: 12/23/03
- Next message: Voitec: "Re: Newbie Q: Part 2 - Disk space on Sol 8"
- Previous message: vp: "Re: PIPE signal and send()"
- Next in thread: Rodrick Brown: "Re: ldapclient and eDirectory"
- Reply: Rodrick Brown: "Re: ldapclient and eDirectory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 23 Dec 2003 03:39:27 GMT
I've been trying to get the native ldapclient in Solaris9 to authenticate
against Novell eDirectory with TLS for some time now. I've gotten it to
work reasonably well, but still have one problem. For some reason, when
the ldap_cachemgr starts up, it tries to make an unecrypted connection to
the server to ask it for supportedSASLMechanisms. If it is unable to make
this first connection, it won't continue on and build the TLS proxy
connection to populate the cache. I also don't need it to make an attempt
to read the default profile from the directory. For security reasons, we
try to have all our LDAP servers accept only TLS encrypted sessions. Is
there any way to have the cachemgr skip the initial steps so I can get
these servers to work properly after a reboot?
- Next message: Voitec: "Re: Newbie Q: Part 2 - Disk space on Sol 8"
- Previous message: vp: "Re: PIPE signal and send()"
- Next in thread: Rodrick Brown: "Re: ldapclient and eDirectory"
- Reply: Rodrick Brown: "Re: ldapclient and eDirectory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
