directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Enrique Rodriguez (JIRA)" <>
Subject [jira] Commented: (DIRSERVER-278) Add SASL support to LDAP
Date Sun, 25 Feb 2007 04:53:05 GMT


Enrique Rodriguez commented on DIRSERVER-278:

After you deferred this issue, I took a look and was able to get SASL/GSSAPI/Kerberos V5 LDAP
Binds working.  I still have to modify response messages to carry encrypted payload but based
on my experience today this doesn't look like a problem.

If no one minds, I'd like to assign this issue to me and I'd like to reopen DIRSERVER-277
(Add SASL GSSAPI (Kerberos V5) mechanism support) and assign that one to me, as well.  Getting
it to work was straight-forward but we have several issues to work out w.r.t. the best way
to configure this and how we tightly integrate Kerberos as a core authentication mechanism.
 Also, we need to update the nexus to return supportedSASLMechanisms.  Anyway, this still
won't be ready for 1.5 but something working can be in trunk shortly.

> Add SASL support to LDAP
> ------------------------
>                 Key: DIRSERVER-278
>                 URL:
>             Project: Directory ApacheDS
>          Issue Type: New Feature
>    Affects Versions: 1.0
>            Reporter: Enrique Rodriguez
>         Assigned To: Trustin Lee
> The Java SASL API Programming and Deployment Guide
> Java interface
> RFC 2222 - Simple Authentication and Security Layer (SASL)
> RFC 2829 - Authentication Methods for LDAP

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message