[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: nss_ldap, pam_ldap, SSL and certificate-based client

From: Paulo Matos <pjsm fct unl pt>
To: pam-list redhat com
Cc: Hugo Monteiro <hmmm fct unl pt>
Subject: Re: nss_ldap, pam_ldap, SSL and certificate-based client
Date: Wed, 20 Sep 2000 06:56:26 +0000 (GMT)

On Tue, 19 Sep 2000, Ben Collins wrote:

> > 	I also would like to know if pam-ldap support certificate-based
> > client authentication which mean the ldap client will send its own
> > certificate for ldap server to authenticate.
> 
> If you are looking at using cert's to authenticate the user that pam_ldap
> is authenticating, you can't do it (AFAIK). Pam-ldap will use a client
> cert to authenticate itself to the server, where it can then authenticate
> the user by the password it asked for.

	I was precisely talking about the pam-ldap cert... how do I put
that in a way that pam-ldap/nss_ldap can reach it? What kind of
certificate is needed and how I build it?

-- 
	Paulo Matos
 ----------------------------------- ----------------------------------
|Sys & Net Admin                    | Serviço de Informática           |
|Faculdade de Ciências e Tecnologia | Tel: +351-21-2941346             |
|Universidade Nova de Lisboa        | Fax: +351-21-2948548             |
|P-2825-114 Caparica                | e-Mail: pjsm@fct.unl.pt          |
 ----------------------------------- ----------------------------------

References:
- Re: nss_ldap, pam_ldap, SSL and certificate-based client
  - From: Ben Collins <bcollins@debian.org>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index] []