[Fedora-directory-users] TLS authentication without a user mapped
Richard Megginson
rmeggins at redhat.com
Wed Mar 1 14:16:34 UTC 2006
François Beretti wrote:
>Sorry for my late answer.
>
>When binding with cn=Directory Manager, the user does not exist. So
>the existance of the entry does not seem to be always requiered, does
>it ?
>
>
That user is special, and there is lots of code in the server to handle
this special case.
The other instance is when using pass through auth or chaining - the
user is remote.
>François
>
>2006/2/23, David Boreham <david_list at boreham.org>:
>
>
>>This would be a new feature. You'd need to write code to
>>implement it (or someone would). Problem is that there are
>>a bunch of places in the code where the existance of an
>>entry with the bind identity is assumed. So it wouldn't be
>>quite as simple as taking the cert DN and copying it into
>>the bind DN for the session.
>>
>>
>>--
>>Fedora-directory-users mailing list
>>Fedora-directory-users at redhat.com
>>https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>
>>
>>
>
>--
>Fedora-directory-users mailing list
>Fedora-directory-users at redhat.com
>https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3178 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20060301/dd9340b0/attachment.bin>
More information about the Fedora-directory-users
mailing list