IdP to LDAP StartTLS
Daniel Fisher
dfisher at vt.edu
Thu Mar 22 18:55:38 EDT 2018
On Thu, Mar 22, 2018 at 2:14 PM, Organic_Iowa <spencer.babcock at enseva.com>
wrote:
> Hello,
>
> Packet capture on my OpenLDAP server shows my bindDN in cleartext when
> jetty+shibboleth starts, as well as profile attributes when shibboleth is
> authenticating a user.
>
You're using LDAP for both authentication and attribute resolution?
Put org.ldaptive in DEBUG and post the relevant logs.
--Daniel Fisher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20180322/b05f0221/attachment.html>
More information about the users
mailing list