You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@directory.apache.org by "Hugh Cole-Baker (JIRA)" <ji...@apache.org> on 2019/04/05 09:13:00 UTC

[jira] [Created] (DIRSTUDIO-1219) Directory Studio doesn't StartTLS before authenticating

Hugh Cole-Baker created DIRSTUDIO-1219:
------------------------------------------

             Summary: Directory Studio doesn't StartTLS before authenticating
                 Key: DIRSTUDIO-1219
                 URL: https://issues.apache.org/jira/browse/DIRSTUDIO-1219
             Project: Directory Studio
          Issue Type: Bug
          Components: studio-connection
         Environment: Apache Directory Studio is running on Mac OS 10.14 with jdk1.8.0_201.
            Reporter: Hugh Cole-Baker


There is an issue connecting to an OpenLDAP server configured with olcSaslSecProps: noplain,noanonymous,minssf=1

i.e. The server requires some form of transport encryption. I have chosen StartTLS and SASL GSSAPI authentication, but Directory Studio doesn't actually do StartTLS before binding - I can see this by looking at the network traffic using Wireshark. I would have expected it to start TLS before attempting to bind.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)