----- "Felix Schumacher" <felix.schumac...@internetallee.de> wrote:
/snip > > I've traced the operation with wireshark only to find it's not even > trying to do any kind of SASL negotiation. > > That seems weird, since: > > > http://www.java2s.com/Open-Source/Java-Document/6.0-JDK-Modules-com.sun/jndi/com/sun/jndi/ldap/LdapClient.java.htm > > suggests it should be doing that by default. > If I read > http://java.sun.com/products/jndi/tutorial/ldap/ext/starttls.html > correctly, I would say, that you have to tell ldapclient explicitly > to > use tls, which the jndirealm does not. >From a different part of the thread, by me: ``I would still like to believe that this is a simple configuration error from my side. That I have to tell Tomcat use StartTLS, use SASL - but none of the documentation gives a hint about that.'' So, my question is: Is there a way to do this from within JNDI Realm? My guesswork was at the end when protocol="TLS" or "StartTLS" or authentication="simple" SASL, etc.. didn't do it. > Bye > Felix > > > > > I'm out ideas now. and welcome any advise you can offer. > > > > So long o/~ > > -- > > Igor Galić > > > > Tel: +43 (0) 664 886 22 883 > > Mail: i.ga...@brainsware.org > > URL: http://brainsware.org/ > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > > For additional commands, e-mail: users-h...@tomcat.apache.org > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org -- Igor Galić Tel: +43 (0) 664 886 22 883 Mail: i.ga...@brainsware.org URL: http://brainsware.org/ --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
