Encrypted LDAP or not?

Hi Community,

I'm a bit confused regarding support for LDAP authentication over a secure channel. In the installation instructions, I see:

Note that current LDAP implementation does not support SSL secured communication and SASL authentication.

But, further down in the instructions I see an example that says:

The connection to the LDAP server is encrypted using TLS, and using the custom port 6123. Corresponding authentication section should looks like this:

So, my question is, does ejabberd support encrpted calls to LDAP for authentication or not?

Thanks much & regards,
Brett Edman

Recent ejabberd supports LDAP over encrypted for authentication

Quote:

Note that current LDAP implementation does not support SSL secured communication and SASL authentication.

That was included in the documentation three years ago, in SVN r617, September 2006.

Quote:

an example that says:

The connection to the LDAP server is encrypted using TLS, and using the custom port 6123. Corresponding authentication section should looks like this:

That text was added in SVN r2098, May 2009, see EJAB-109.

There is also documentation of option ldap_encrypt, included in SVN r2472, August 2009, see EJAB-998.

Quote:

I'm a bit confused regarding support for LDAP authentication over a secure channel.
does ejabberd support encrpted calls to LDAP for authentication or not?

There is an inconsistency in the Guide. As ejabberd 2.1.0 supports LDAP over encrypted connection (for user authentication and any other task), the wrong line is the first one you mentioned. I'll make sure it's removed from the Guide for next version.

Syndicate content