Specifying the Security Mode
You can specify a security mode that guarantees that authentication takes place between the server and the client during the bind process, or that the entire communication between the server and the client is encrypted. You can also allow insecure binding. These options are not mutually exclusive. The security mode used for a particular connection is actually negotiated between the client and the server.
-
From the Admin Console main window, in the Security section, specify the Security modes supported by the server.
The options are:
-
TLS: establishes a secure connection at any time during an LDAP session by calling the Start TLS extended operation
-
SSL on Specific Port: opens a secure connection on the specified port (by default, port 636)
You can enable several options.
-
Specify the following parameters:
If you have selected TLS or SSL on Specific Port:
-
The SSL key package (usually the IP address of the host)
-
Whether you want the server to authenticate clients: set the SSL Client Verification flag to On
If you have selected SSL on Specific Port:
-
A port number to use for SSL connections
-
-
Click Apply to save your changes.
Note -Due to legal restrictions in certain countries, SSL is not available worldwide.
- © 2010, Oracle Corporation and/or its affiliates