Currently LS can use encrypted connections using ldaps:// or the StartTLS extended operation, but the certificate isn't checked. Further LS only supports anonymous and simple authentication. We should improve this. RFC 4513 http://rfc.net/rfc4513.html describes LDAP Authentication Methods and Security Mechanisms.
|Add SASL authentication||Closed|