directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Natalia <nata....@gmail.com>
Subject Re: [Studio] SSL (ldaps) connection only with tls_ssf=128 instead of 256
Date Wed, 16 Feb 2011 07:12:09 GMT
Hi,

i use GSSAPI (Kerberos) with "Authentication with integrity and privacy
protection". In logs it looks:

BIND dn="<my dn>" mech=GSSAPI sasl_ssf=56 ssf=56

It is same with Apache DS and ldapsearch.

Best regards,

Natalia


2011/2/15 Pierre-Arnaud Marcelot <pa@marcelot.net>

> Hi Natalia,
>
> What kind of Quality of Protection (QOP) are you using for the connection?
>
> Regards,
> Pierre-Arnaud
> On mardi 15 février 2011 at 13:48, Natalia wrote:
> > Hi,
> >
> > I use Apache Directory Studio. I have taken for the connection to LDAP
> > server the Encryption methode SSL. But in the log file of LDAP I see:
> > TLS established tls_ssf=128 ssf=128
> >
> > Instead of:
> > TLS established tls_ssf=256 ssf=256
> > what gets I after the connection with GQ (anothe LDAP Browser) or
> ldapsearch
> > -H "ldaps://...
> >
> > I have tried with StartTLS - result is always same. What I can make to
> bind
> > with tls_ssf=256 to LDAP? It is necessary from the existed ACLs.
> >
> > Thank you in advance for your help
> >
> > Kind regards,
> >
> > Natalia
> >
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message