https://www.ejabberd.im/node/821 en https://www.ejabberd.im/node/821#comment-1740 <p>The problem may be the SASL:<br /> When i enable it in tkabber, TLS is active in server and auth is using LDAP, Conection is refused because socket cant be opnened(as the error message says in tkabber).</p> <p>When its enables in tkabber, conection is unencrypted or TLS but auth is internal, SASL works perfect.</p> <p>when SASL is disabled in tkabber(two options), conection unencrypted and auth LDAP. it runs well but unencrypted.<br /> If i enable the "Use SASL authentication" in tkabber, error message says: "SASL auth error: no mechanism available..."</p> <p>*non-SASL it isnt suported.<br /> *LDAP server is compiled with: TLS and SASL.<br /> *OS is: Suse 10, ejabberd version is 1.1.1, LDAP version is 2.3.21<br /> *i have tried with pass stored in plain text, ssha and md5 in the attribute userPassword in the LDAP users tree.</p> <p>Thanks for help. Yes i have a bad Englis, Sorry :P</p> Tue, 16 May 2006 10:45:29 +0000 carlosmf comment 1740 at https://www.ejabberd.im https://www.ejabberd.im/node/821#comment-1739 <p>Ah. My bad. Sorry, read the original post quickly and missed that.</p> <p>As for the his actual question, can't speak for latest ejabberd 1.1.1 yet, but as of 1.1.0 (Windows version running on XP Pro), have never had an issue and tend to have a similar setup (using LDAP for authentication, clients logging in via STARTTLS).</p> <p>Will write back once I get patched up to 1.1.1 if things are different.</p> Tue, 16 May 2006 00:22:56 +0000 fseesink comment 1739 at https://www.ejabberd.im https://www.ejabberd.im/node/821#comment-1737 <div class="quote-msg"> <div class="quote-author"><em>badlop</em> wrote:</div> <p>So his question could be rephrased as: 'Is there any known imcompatibility between 'LDAP auth method' and 'STARTTLS encryption on C2S'?</p></div> <p>Thank you, badlop.</p> <p>Anyone had the same problem??</p> Mon, 15 May 2006 07:18:28 +0000 carlosmf comment 1737 at https://www.ejabberd.im https://www.ejabberd.im/node/821#comment-1730 <div class="quote-msg"> <div class="quote-author"><em>fseesink</em> wrote:</div> <p>A search on the site for terms 'LDAP' and 'SSL' or 'LDAPS'</p></div> <p>Small clarification: he tries to use LDAP to store passwords, and clients using STARTTLS to connect. It seems those options are mutually exclusive for him. He does not mean LDAPS.</p> <p>He posted the same question, but more detailed and in spanish on<br /> <noindex><a href="http://www.jabberes.org/node/797" rel="nofollow" >ejabberd 1.1.1 + LDAP + TLS</a></noindex>.</p> <p>So his question could be rephrased as: 'Is there any known imcompatibility between 'LDAP auth method' and 'STARTTLS encryption on C2S'?</p> Fri, 12 May 2006 21:53:49 +0000 mfoss comment 1730 at https://www.ejabberd.im https://www.ejabberd.im/node/821#comment-1729 <p>A search on the site for terms 'LDAP' and 'SSL' or 'LDAPS' would reveal the following, among others:</p> <p><a href="http://www.ejabberd.im/node/613" title="http://www.ejabberd.im/node/613">http://www.ejabberd.im/node/613</a><br /> <a href="http://www.ejabberd.im/node/719" title="http://www.ejabberd.im/node/719">http://www.ejabberd.im/node/719</a></p> <p>In short, at this point there is no LDAPS support. Can't speak to when we might see it, as I'm not part of the dev team. But feel free to put in a feature request, or if you're ok getting your hands dirty, try some of the info provided and modify the code.</p> Fri, 12 May 2006 19:16:03 +0000 fseesink comment 1729 at https://www.ejabberd.im