mirror of
https://git.openldap.org/openldap/openldap.git
synced 2024-12-27 03:20:22 +08:00
18 lines
608 B
Plaintext
18 lines
608 B
Plaintext
# Copyright 1999-2000, The OpenLDAP Foundation, All Rights Reserved.
|
|
# COPYING RESTRICTIONS APPLY, see COPYRIGHT.
|
|
|
|
H1: Using TLS
|
|
|
|
OpenLDAP clients and servers are capable of using
|
|
Transport Layer Security {{TERM:TLS}} framework to provide
|
|
integrity and confidentiality protections and to support
|
|
LDAP authentication via SASL EXTERNAL.
|
|
|
|
TLS uses {{TERM:X.509}} certificates to carry client and server
|
|
identities. All servers are required to have valid certificates,
|
|
whereas client certificates are optional. Clients must have a
|
|
valid certificate in order to authenticate using the SASL EXTERNAL
|
|
mechanism.
|
|
|
|
|