I need an LDAP authentication mechanism with which only the 'password' used in the LDAP Bind request, is sent in the encrypted format. All the other data in the Bind request and also the other LDAP requests and responses(add, search etc.) can be sent in a simple/unencrypted way.
Which mechanism I should go ahead with? - Simple auth. does not help, as it requires the password sent in plain ASCII format. - SSL auth. does not help, as it en/decrypts all the data that is sent over the LDAP connection, which causes slight performance overhead. - SASL auth. also does not help. (I'm not sure here!) Does anybody have a suggestion? --- You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
