Thanks for the info, it was a big help. After talking to our network
guys, it turns out they haven't enabled SASL on the server, so I'm
forced into using SSL. I was confused on why the API provided three
different ssl client init methods, but your comments above cleared it
up. Thanks again.
So one last related question. I read in the Sun Directory SDK that
LDAPSSLSocketWrapFactory class doesn't support certificate-based client
authentication, and also that the LDAPSSLSocketFactory class can only
do certificate-based authentication inside the browser (i.e. as an
applet).
So what