JAAS ldap issue

Daniel Fisher dfisher at vt.edu
Wed Jun 3 14:48:19 UTC 2020

On Wed, Jun 3, 2020 at 9:59 AM Peter Schober <peter.schober at univie.ac.at>

> Or would I use ldaps:// in both cases (LDAPS vs. LDAP+STARTTLS) and
> differentiate between LDAP-over-SSL and LDAP+STARTTLS using
> useStartTLS=false and true, respectively? I think not but the above
> confuses me slightly...

ldaps:// + useStartTLS will result in some sort of exception as the
StartTLSRequest will be attempted on a socket that is already confidential.
i.e. useStartTLS is not ignored and is mutually exclusive with ldaps://

So your 3 bullets are correct, with the 3rd bullet specifying

--Daniel Fisher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200603/7aa502b9/attachment.htm>

More information about the users mailing list