Conclusion
In this chapter we have discussed the ways in which directory data and client sessions can be protected. Directory data is subject to access control. There is no standard yet for defining and publishing the access control of an LDAP server, but we have looked closely at how it is published and configured in Netscape Directory Server.
Three authentication types are published in Internet standards-track documents: simple password authentication, TLS (SSL), and SASL. All LDAP servers support simple password authentication, but not many support the proposed standard for TLS (although many support SSL over a dedicated connection). SASL is more widely supported in principle, but not many mechanisms are available yet for most servers or clients. ...
Get LDAP Programming with Java™ now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
