directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Boreham <da...@bozemanpass.com>
Subject Re: [Servser] SSL Support?
Date Thu, 22 Sep 2005 14:53:24 GMT
Trustin Lee wrote:

> I thought SASL is required for LDAP to authenticate user in a secure 
> way and LDAPS works with SASL only.  Am I misunderstanding?  Let me 
> know.  I'm a novice in LDAP. :)
>
Nope, SASL and SSL are orthogonal (well, nearly).
If (and only if) you want to perform cert-based authentication in
a standard way, then you need to support the SASL-EXTERNAL
mechanism. But almost nobody needs this. Basic SSL does
not depend on SASL (and in fact SASL-EXTERNAL doesn't
really depend on SASL either ;)



Mime
View raw message