Directory ApacheDS
  1. Directory ApacheDS
  2. DIRSERVER-1617

Add a feture to support TLS in DelegatingAuthenticator

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: 1.5.7
    • Fix Version/s: 2.0.0-M13
    • Component/s: None
    • Labels:
      None

      Description

      Current implementation of DelegatingAuthenticator uses plain socket connection which makes it vulnerable to MITM attacks.
      It will be good to setup TLS (using startTLS extended operation) after establishing a connection.

      We should also add a configuration option to selectively turn on/off this option with a new attributetype named like 'useTLS'
      in the 'ads-delegatingAuthenticator' objectclass.

        Activity

        Emmanuel Lecharny made changes -
        Status Resolved [ 5 ] Closed [ 6 ]
        Emmanuel Lecharny made changes -
        Fix Version/s 2.0.0-M13 [ 12324631 ]
        Fix Version/s 2.0.0-RC1 [ 12313387 ]
        Emmanuel Lecharny made changes -
        Status Open [ 1 ] Resolved [ 5 ]
        Resolution Fixed [ 1 ]
        Pierre-Arnaud Marcelot made changes -
        Fix Version/s 2.0.0-RC1 [ 12313387 ]
        Fix Version/s 2.0.0-M3 [ 12316467 ]
        Pierre-Arnaud Marcelot made changes -
        Fix Version/s 2.0.0-M3 [ 12316467 ]
        Fix Version/s 2.0.0-M2 [ 12316056 ]
        Pierre-Arnaud Marcelot made changes -
        Fix Version/s 2.0.0-M2 [ 12316056 ]
        Fix Version/s 2.0.0-M1 [ 12316055 ]
        Emmanuel Lecharny made changes -
        Field Original Value New Value
        Fix Version/s 2.0-M1 [ 12316055 ]
        Affects Version/s 1.5.7 [ 12314837 ]
        Kiran Ayyagari created issue -

          People

          • Assignee:
            Unassigned
            Reporter:
            Kiran Ayyagari
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development