| Exit Print View | |
Sun OpenDS Standard Edition 2.2 Administration Guide |
|
|
|
Starting and Stopping Your Server Instance
Configuring the Server Instance
Configuring the Proxy Components
Configuring Security Between Clients and Servers
Configuring Security Between the Proxy and the Data Source
Configuring Security Between the Proxy and Data Source Using dsconfig
To Configure Security Between the Proxy and Directory Servers Using dsconfig
Setting Access Control Using Network Group Criteria
Configuring Servers With the Control Panel
The Sun OpenDS Standard Edition proxy manages both the security with the client and with the directory server. The proxy supports both SSL and StartTLS.
When you configure Sun OpenDS Standard Edition proxy security, you must specify how the proxy connects to the remote LDAP server by indicating if the proxy should use SSL always, never, or user.
If you configure Sun OpenDS Standard Edition proxy security as always, then regardless how the client connects to the proxy, the connection with the remote LDAP server will always be secured using SSL.
Similarly, if you configure Sun OpenDS Standard Edition proxy security as never, then regardless if the client connects to the proxy with a secure connection, the connection between the proxy and the remote LDAP directory server will not be secured.
If you configure Sun OpenDS Standard Edition proxy security as user, then the security between the proxy and the remote LDAP directory servers will be the same as the security between the client and the proxy. For example, if the client connect with SSL, then the connection with the remote LDAP server will also use SSL. One notable exception is if the client connects using StartTLS, then Sun OpenDS Standard Edition proxy will connect to the remote LDAP servers using SSL.
For more information see Modes of Secure Connection.
|
|