Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Login to LDAP? 1

Status
Not open for further replies.
dan

dan

MIS
Oct 7, 1998
298
US
I have downloaded the LDAPManager.exe program from Novell and can connect via anonymous connection. However, If I try any login (including admin) I get the message, "Unable to connect to LDAP server. Confidentiality is required for this operation." We do not have an SSL server on the box. Does it mean that one is required?
Dan
 
Sort by date Sort by votes
That error means that you can't login with clear text. You would either need to configure the LDAP to allow clear text, or use SSL from your LDAP application when trying to connect.

Marvin Huffaker, MCNE
 
Upvote 0 Downvote
Would you have any idea how I can configure LDAP to allow clear text?
Dan
 
Upvote 0 Downvote
Understand that when you allow clear text, you are severely crippling the security of your system. All accounts and passwords are sent in clear text and is not recommended unless you have a specific reason to do so, and you can be pretty confident the information will never be compromised.

Where you say you are using an anonymous ldap login, you should use an LDAP proxy user with no password, that has some very basic rights to the tree, such as browse and read (and only on specific pieces you want people to have access to). This will help minimize the risk. Don't use an ADMIN user for the LDAP proxy. That will be suicide.

You need to go into ConsoleOne and find the LDAP server and LDAP Group objects for the server you are authenticating LDAP to. There are properties on both that control whether Clear text is allows. You'll want to clear any options that say "Require TLS" and then also check "allow clear text". I can't recall specifically which options are on which objects.



Marvin Huffaker, MCNE
 
Upvote 0 Downvote
Thanks for your help. I will probably set up TLS eventually. I am just trying to get it to work for now.
Dan
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

gazonk.del
  • Locked
  • Question
How to Copy save_set from Tape to Disk -- Continuation
Replies
0
Views
140
gazonk.del
gazonk.del
SBTBILL
  • Locked
  • Question
How to get to files
Replies
1
Views
128
Provogeek
Provogeek
DreemaGurl
  • Locked
  • Question
Can't log on to Citrix through emote access portal
Replies
1
Views
273
ntinlin
ntinlin
dumbchemist
  • Locked
  • Question
Using IDE to SATA/SATA to IDE converters with Netware 5
Replies
18
Views
309
goombawaho
goombawaho
BbkKnight
  • Locked
  • Question
How to Add a Disclaimer to the Access Gateway Enterprise Edition
Replies
0
Views
70
BbkKnight
BbkKnight

Part and Inventory Search

Sponsor

Back
Top