-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
STARTTLS support for LDAP #794
Comments
As mentioned in the ejabberd Guide, the LDAP code supports only TLS encryption, not STARTTLS:
|
On Tue, Aug 01, 2017 at 10:15:18AM +0000, badlop wrote:
As mentioned in the ejabberd Guide, the LDAP code supports only TLS
encryption, not STARTTLS [...]
Certainly. I know this documentation. The question was whether it is
planned to include StartTLS support at some point (i.e. this is a
feature request, not a bug report).
Marvin
…--
Blog: https://www.guelkerdev.de
PGP/GPG ID: F1D8799FBCC8BC4F
|
Hello @badlop, is it possible to reopen this? StartTLS support would be a useful feature. |
STARTTLS is becoming obsolete in every software, and we support TLS. So we do not plan to spend efforts on STARTTLS. |
@cromain ldaps was never standardised, STARTTLS is the non-deprecated one:
|
I wonder what should be standardized there. Also, are there LDAP servers without direct TLS support? |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Hi everyone,
okay, I have an OpenLDAP server running here that I want to use for authentication. Problem: It does not allow unencrypted connections. It does not allow LDAPS either. It wants STARTTLS (RFC 4513) for connection.
The ejabberd docs state this:
Since the docs do not state any reasons for that I searched, but all I found was this ML thread from 2013, which seems to have yielded no result.
So what’s the state of STARTTLS support for LDAP authentication in ejabberd? I’m running ejabberd 15.09 on Debian Jessie, Erlang/OTP 17.3.
Greetings,
Marvin
The text was updated successfully, but these errors were encountered: