Hello, I am having a related problem with TLS connections:
You pointed out several possibilities to reject unencrypted connections from the server (in slapd.conf). But is there also a configuration option that makes encryption a default for the clients? In other words: Is there something I can put into ldap.conf, so that I don't have to give the -Z switch to the commandline utilities (e.g. a URI like ldap+tls://ldap.example.com)?
Best regards, Michael Häusler
