Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-1848

Add possibility to authenticate using a client certificate for LDAPS connections

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 2.0.0-M12
    • None
    • authn
    • None

    Description

      Allow client authentication using (X.509) certificate for LDAPS connections.

      I'm not sure, how the configuration should look like on the ApacheDS side, some points which come to my mind:

      • should be the truststore defined in the same way as keystore for the LDAPS? (file or attribute in admin entry)
      • is an existing user account needed (for the authentication and LdapSession handling)? if yes, how will be the mapping (certificate to user LdapEntry) configured?

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. DIRSERVER-1842 Make the server support TrustManager that verify the certficates

          • Major - Major loss of function.
          • Open

          Activity

            People

              Unassigned Unassigned
              kwart Josef Cacek
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: