Trying to use LDAP over SSL here with clients other than
Java-based (e.g. using Mozilla NSS SSL library).
It seems that the set of ciphers offered by the Apache DS
and the set offered by NSS are non-overlapping.
I'm not up to speed on Java SSL, but some google searching
seems to indicate that there is a common problem with
Java and the 'enabled' cipher suites vs. the 'supported' suites:
the default set of 'enabled' ciphers does not work with
all clients.
Is it possible that the SSLFilter in maven needs to enable
the supported suites to achieve interop with a wide range
of SSL clients ?
Anyone had success interoperating with SSL between Apache DS
and other clients ?
Thanks.
|