It is now possible to set up a secure connection to an LDAP Directory Server using SSL or Transport Layer Security (TLS). To establish a secure connection between a client and a LDAP Directory Server, use either of the following methods:
Establish a secure connection to the secure port of the LDAP Server. This is typically port number 636 and is established by entering the following syntax in the libtcl.cfg file:
[DIRECTORY]
ldap=libsybdldap.so
ldaps://huey:636/dc=sybase,dc=com????bindname=cn=Manager,dc=Sybase,dc=com?secret
If no port number is specified with ldaps://, port number 636 is used by default.
Upgrade a normal connection (typically port number 389 of the LDAP Server) to a secure one, using StartTLS. To upgrade the connection, enter the following syntax in the libtcl.cfg file:
[DIRECTORY]
ldap=libsybdldap.so starttls
ldap://huey:11389/dc=sybase,dc=com????bindname=cn=Manager,dc=Sybase,dc=com?secret
If no port number is specified with ldap://, port number 389 is used by default.
For more information, see the Open Client Client-Library/C Reference Manual.
LDAP connections using SSL/TLS are currently
only available for 32-bit platforms.