Plan for OCSP verifier to LDAP?
Is there any plan to support OCSP verification over LDAP (or LDAP/s)? OT: BTW, could anyone recommend an LDAP client library (C or C++) that works on Windows? Preferably open source. thanks coco _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: Plan for OCSP verifier to LDAP?
Is there any plan to support OCSP verification over LDAP (or LDAP/s)? This question makes no sense. OCSP and LDAP are two differnet protocols. It's like saying SMTP over HTTP /r$ -- Rich Salz Chief Security Architect DataPower Technology http://www.datapower.com XS40 XML Security Gateway http://www.datapower.com/products/xs40.html __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: Plan for OCSP verifier to LDAP?
I have a (potiential) customer which has a CA configured with an OCSP responder that talks only LDAP. The IT guy wouldn't want to set up an http responder (don't ask reason, I can't figure that out either). He probably means that the OCSP responder only gets certificates and CRL's by doing LDAP queries. That's why I was asking if there is any plan to put in support to send OCSP request over LDAP. There is no such thing. LDAP protocol has bind, search, etc., packets. OCSP uses HTTP POST to make a query. Can you show me where OCSP over LDAP is documented? /r$ -- Rich Salz Chief Security Architect DataPower Technology http://www.datapower.com XS40 XML Security Gateway http://www.datapower.com/products/xs40.html __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]