idp.authn.LDAP.sslConfig set to jvmTrust odity

Rod Widdowson rdw at
Tue May 12 06:09:18 EDT 2015

>> , is it possible to retrieve attributes without any TLS/SSL configuration?
> If your LDAP DSA allows that, the IDP certainly won't force you to
> protect the transport to the DSA

Specifically, that's what idp.attribute.resolver.LDAP.useStartTLS (which default to idp.authn.LDAP.useStartTLS which defaults to true) is for.


More information about the users mailing list