directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Antoine Levy-Lambert <anto...@gmx.de>
Subject Re: [jira] Commented: (DIRAPI-40) LdapNetworkConnection should throw an exception when startTls() method is called and the LdapConnectionConfig has the 'useSsl' flag set to true
Date Fri, 11 Feb 2011 04:47:39 GMT
Hello Emmanuel,

forgive my ignorance. Does startTLS work fine over a Firewall ?

I am asking because on the site where I am working in my day job we are
using LDAPS over a Firewall.

Best regards,

Antoine

On 2/10/11 7:02 PM, Emmanuel Lecharny (JIRA) wrote:
>     [ https://issues.apache.org/jira/browse/DIRAPI-40?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12993278#comment-12993278
] 
>
> Emmanuel Lecharny commented on DIRAPI-40:
> -----------------------------------------
>
> More specifically, the use of LDAPS should be marked as deprecated. StartTLS is the way
to go.
>
> The way to get it working is probably to replace the useSSL flag when we create the connection,
to instead use the startTLS extedned request to establish a secure connection.  
>
> I'm quite sure that every server support StartTLS those days, so there is no reason to
not use that in any case. i'm even wondering if we should not use StartTLS even when the user
requires 'ldaps'...
>


Mime
View raw message