Support Home Communities Home   Search Today's Posts Mark Forums Read

 
 
LinkBack Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #2  
Old 28-Oct-2009, 06:44 AM
ab@novell.com's Avatar
Novell
  
Join Date: Aug 2007
Location: USA
Posts: 3,460
ab@novell.com 30-39 reputation pointsab@novell.com 30-39 reputation pointsab@novell.com 30-39 reputation pointsab@novell.com 30-39 reputation points
Default Re: Enabling Plain Text Authentication
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

There are a couple of options. First, use something that supports TLS
when using simple binds over a cleartext port. Most clients support this;
for example, the commannd-line version of ldapsearch (and related apps)
support this with -ZZ:

ldapsearch -ZZ -h serverIP -p 389 -D cn=admin,dc=user,dc=system -x -W

The other option is to go into iManager, get (if you do not have them) the
LDAP plugins installed, and then go to the LDAP Group and uncheck the
'Require TLS for Simple Binds with Passwords' options followed by an
eDirecgtory restart (or LDAP refresh if you know how).

Keep in mind that I mention the second option as it is the
least-preferred; doing that means you are specifically sending the
username and password over the wire in the clear so anybody sniffing
traffic will pick it up and have all of the rights of the user you are
using. Unless you have a very compelling reason to do so you should be
using something that protects passwords when sent over the wire. Doing
otherwise leaves you in the category of users who still use telnet and
non-anonymous FTP.

Good luck.





nakram wrote:
> Hi,
>
> When I was instaling eDirectory locally, I somewhere enabled SSL
> authentication. Now i can't connect my application to the server over
> plain text channel, my application is successfully connecting on SSL
> port.
> When I try to login over plain text channel, the server returns error
> *"Confidentiality Required"*.
>
> The latest version of eDirectory is installed on my machine, I don't
> have console one. I have iManager only.
>
> How can I enable plain text authentication on my eDirectory server?
>
> Regards,
> Naeem.
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJK6C6kAAoJEF+XTK08PnB55msP/iMse0zElnTo3z3rkSlid34o
2cL8+wDB2zf9mkeb84j087Az29nW66wo866lEWqeVSIUxrnyqg/K5N+NZ2HE2a9K
Y0K9rlPsbFWXDQDQLWqRlX41GlaUtirUyhe0MPrVS1PouN85Jh +Gr3+onhZgt8qB
U1PylIEKOfXydR253JdpDUGtr15X1JqvEzMk++CAD5VR0DIaXY LA0npckdjVSdyr
GNqmm8kRED7D9D7gmhBoodTtrCZPAtzi+0JdetT3O1Dm6qEQF5 C7+Ph7IdYfZM4l
ZrTgFNQNjUUfpXtRJHm9nP8HHnCHiE4Yo9A2LZeF8pHRXNAmPd OPUsME8dgw0X4f
Fe0vus6dJ+WNyEeGqz+PSy51dtI6Tw++oHI3ymoinzBP7XViGo qB6isjnHcT2mAA
kus7J6jie1NPxcaOpAA781fo0B+LZ/lYr9fiYpPxMBXOgYMlkxzycGiOTJgM9NkV
bA0Km1RLtQPy5H6j1ZAmXbZ1pC4fmCL3H6SoioKfUAI68tty+w j187xSoWMI7aUX
x7CmK8R7g/atVgmdNoB5w+ECSgtZ+spYs+Jv7e6BC/N1lhE7kk8oZ9v8awTPz7l3
o4gxR5NUaFuqmHKQPo0zfKqEZ0OM3VrSqUm/OixTtjbSRT3X89iK9xGraweRmf0Y
rXGwb6fF9PPoFJUQ/Jlw
=Iwbz
-----END PGP SIGNATURE-----
Reply With Quote
 

Tags
authentication, plain text, ssl

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -6. The time now is 07:57 AM.
Contact Us - NOVELL FORUMS - Archive - Privacy Statement - Top

© 2007 Novell, Inc. All Rights Reserved.

Search Engine Friendly URLs by vBSEO 3.3.0 RC2