> There are many things to consider, and it is difficult to advise you > without knowing your situation. You want to authenticate people > accessing your LDAP. Do these people already have accounts in your > system (i.e. for shell access)? Do you want to reuse these accounts? If > so then where do these accounts reside, e.g. passwd file, kerberos, ...?
What clients you use and what mechanisms they support is also a key element. If you currently have nothing I'd recommend aiming for DIGEST-MD5; this is a fairly strong mechanism, easy to implement, never passes your password over the wire, and is pretty broadly supported by clients. --- You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
