Re: LDAP and Kerberos

[Richard Levitte - VMS Whacker <levitte@stacken.kth.se>]

From: Ken Hornstein <kenh@cmf.nrl.navy.mil>

kenh> BTW, does OpenLDAP 2.x support SASL security layers? (aka
kenh> "session encryption").

Quoted from ANNOUNCEMENT for OpenLDAP 2.0-beta:

    This release contains the following major enhancements:

        * LDAPv3 support
            + RFC 2251-2256
            + Language Tags (RFC 2596)
            + SASL (RFC2829)
            + TLS (RFC2830) and SSL (ldaps://)
            + named references
            + DNS SRV location
        * IPv6 support
        * LDAP over IPC support
        * Updated C API 
        * LDIFv1 (RFC2849)
        * Enhanced Standalone LDAP Server:
            + Updated Access Control System
            + Thread Pooling
            + DNS SRV referral backend (experimental)
            + LDAP backend (experimental)
            + SQL backend (experimental)
            + Better tools

-- 
Richard Levitte   \ Spannvägen 38, II \ LeViMS@stacken.kth.se
Chairman@Stacken   \ S-168 35  BROMMA  \ T: +46-8-26 52 47
Redakteur@Stacken   \      SWEDEN       \ or +46-709-50 36 10
Procurator Odiosus Ex Infernis                -- poei@bofh.se
Member of the OpenSSL development team: http://www.openssl.org/
Software Engineer, Celo Communications: http://www.celocom.com/

Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.