directory-api mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Karim Hosny <karim.ho...@its.ws>
Subject RE: Problem using TLS or SSL to establish a secure binding
Date Wed, 25 Mar 2015 07:45:26 GMT
Hi Emmanuel

I tried this method but it fails as well.

If I write it as config.setSslProtocol("TLSv1.0"); I get Caused by: java.security.NoSuchAlgorithmException:
TLSv1.0 SSLContext not available
If I write it as config.setSslProtocol("TLSv1"); it ignores this set completely and works
on TLSv1.1
And the same first error shows up if I set it to SSLv3.0

Karim
-----Original Message-----
From: Emmanuel Lécharny [mailto:elecharny@gmail.com] 
Sent: Wednesday, March 25, 2015 9:38 AM
To: api@directory.apache.org
Subject: Re: Problem using TLS or SSL to establish a secure binding

Le 25/03/15 08:17, Kiran Ayyagari a écrit :
> On Wed, Mar 25, 2015 at 2:52 PM, Karim Hosny <karim.hosny@its.ws> wrote:
>
>>
>> Ok,  what about SSL, when I try to connect using SSL it doesn't 
>> connect at all although with TLS it connects but doesn't bind.
>>
> the default is TLS. SSL support is removed after the disclosure of 
> POODLE vulnerability,

This is configurable. You can enforce an older version of TLS (1.0) to be used by telling
the LdapConnectionConfig tu use something else than teh default protocol :

LdapConnectionConfig.LsetSslProtocol( String protocol );



Mime
View raw message