On Mon, Oct 12, 2015 at 7:55 PM, Kiran Ayyagari <[email protected]> wrote:
> Hi Mike, > > On Mon, Oct 12, 2015 at 7:03 PM, <[email protected]> wrote: > >> Hi developers! >> >> First: sorry for my bad english writing, but I’m not a native speaker and >> usually most I’m reading english texts. >> >> >> >> Currently I’m evaluating the ApacheDS LDAP server to use with a software >> project with some special requirements. >> >> >> >> 1. The clients have to use LDAPv3. >> >> 2. The clients have to use TLS for search operations. >> >> 3. The clients have to use TLS with client certificates for modify >> operations. >> >> >> >> Is it possible to realize that requirements with ApacheDS? >> >> >> >> And as I’ve heard, the 3. Requirement is not supported, is there an >> opportunity to transmit a client certificate to the server, to check this >> using an interceptor? >> > its been a while since I last checked for this support in the MINA network > library that we use > I am gonna take a look at it again and let you know in a day > so, I looked at it, and it is not currently possible cause the TrustManagers in StartTLSHandler and LdapsInitializer are hardcoded, this is easy to fix, I will try to fix this in trunk in the future (too many things on my plate right now). > >> >> I am looking forward to get mail from you. >> >> >> >> Regards, >> >> Mike. >> >> >> >> >> >> Mike Ettrich >> Consultant >> --------------------------------------------------------- >> arvato Systems perdata GmbH >> Joachim-Jungius-Str. 9 >> 18059 Rostock >> >> E-Mail: [email protected] >> Tel.: +49 (0) 5241 / 80 402 58 >> Fax: +49 (0) 381 / 44 03 53-33 >> >> www.arvato-systems.de >> >> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------- >> >> arvato Systems perdata GmbH: Sitz Leipzig | Amtsgericht Leipzig HRB 15 >> 784 >> >> Geschäftsführer: Dr. Percy Dahm | Matthias Moeller (Vorsitzender) | >> Thomas Nautsch >> >> >> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------- >> Diese E-Mail und eventuelle Anlagen können vertrauliche und/oder >> rechtlich geschützte Informationen enthalten. Wenn Sie >> nicht der richtige Adressat sind oder diese E-Mail irrtümlich erhalten >> haben, informieren Sie bitte sofort den Absender und >> vernichten Sie diese E-Mail. Das unerlaubte Kopieren sowie die unbefugte >> Weitergabe dieser E-Mail sind nicht gestattet. >> >> >> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------- >> This e-mail and any attachments may contain confidential and/or >> privileged information. If you are not the intended recipient >> >> (or have received this e-mail in error) please notify the sender >> immediately and destroy this e-mail. Any unauthorized copying, >> >> disclosure or distribution of the material in this e-mail is forbidden. >> >> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------- >> >> Bitte denken Sie über Ihre Verantwortung gegenüber der Umwelt nach, bevor >> Sie diese E-Mail ausdrucken! >> >> >> >> >> > > > > -- > Kiran Ayyagari > http://keydap.com > -- Kiran Ayyagari http://keydap.com
