JAAS ldap issue
Daniel Fisher
dfisher at vt.edu
Wed Jun 3 14:48:19 UTC 2020
On Wed, Jun 3, 2020 at 9:59 AM Peter Schober <peter.schober at univie.ac.at>
wrote:
> Or would I use ldaps:// in both cases (LDAPS vs. LDAP+STARTTLS) and
> differentiate between LDAP-over-SSL and LDAP+STARTTLS using
> useStartTLS=false and true, respectively? I think not but the above
> confuses me slightly...
>
ldaps:// + useStartTLS will result in some sort of exception as the
StartTLSRequest will be attempted on a socket that is already confidential.
i.e. useStartTLS is not ignored and is mutually exclusive with ldaps://
So your 3 bullets are correct, with the 3rd bullet specifying
useStartTLS=false.
--Daniel Fisher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200603/7aa502b9/attachment.htm>
More information about the users
mailing list