Re: Signing LDAP Without Certificate Services

From: Michael Ströder <michael@xxxxxxxxxxxx>
Date: Wed, 23 May 2007 18:46:23 +0200

Joe Kaplan wrote:

Note also that Windows clients have the ability to sign and encrypt LDAP
traffic without SSL, as that is a feature that is built into Windows
authentication and can be enabled. Some of the tools do this automatically,
but not all.

I'm curious. Is this implemented as an LDAP extension? Or are you
talking about LDAP SASL bind? Or completely kerberized LDAP traffic?

Ciao, Michael.
.

Follow-Ups:
- Re: Signing LDAP Without Certificate Services
  - From: Joe Kaplan

References:
- Signing LDAP Without Certificate Services
  - From: Irwin Fletcher
- Re: Signing LDAP Without Certificate Services
  - From: Joe Kaplan

Prev by Date: Re: Failure to update domain policy Impersonate a client after authenication
Next by Date: Re: folder redirection with mandatory profile
Previous by thread: Re: Signing LDAP Without Certificate Services
Next by thread: Re: Signing LDAP Without Certificate Services
Index(es):
- Date
- Thread

Relevant Pages

trace logger for ADAM - "Windows NT Active Directory Service"
... Its maybe more like a feature request than a problem. ... Imagine one LDAP server with several dozens of LDAP applications. ... Active Directory provides a similar trace logger, ... need some log on/off feature right in the productive ADAM service. ...
(microsoft.public.windows.server.active_directory)
Re: Help Understanding LDAP Variants
... Windows Server 2003 (and on Windows XP as the client OS where this feature ... I'm not sure about non-MS LDAP support for it, ... There is also a complimentary signing/integrity feature built into this. ... Joe Kaplan-MS MVP Directory Services Programming ...
(microsoft.public.windows.server.active_directory)
Re: Damn you, FEDEX! or Nikon D40 lost in Springfield, MO blackhole.
... the 2 mp Mavica he had been using with a Nikon D40. ... After shopping around, he got me to order one for him. ... The shipper had it insured, but from what I have read it could take weeks to sort this crap out. ... You may get your insurance from FedEx and a couple weeks later they find it and deliver it. ...
(alt.photography)
Re: Can Solaris 9 remember some number of old passwords?
... >to use that feature will be a show-stopper, ... features (in LDAP, it would be part of the LDAP server) ... Expressed in this posting are my opinions. ... to opinions held by my employer, Sun Microsystems. ...
(comp.unix.solaris)
Re: [SLE] LDAP / Active Directory
... > i am looking to a solution how i can login from linux and windows clients ... > to a linux server exactly as active directory from microsoft. ... 1) Configure a samba domain to use a ldap ...
(SuSE)