On 3/10/20 4:07 PM, Rob Crittenden wrote:
> Matthew Aguirre wrote:
>> Is there a way to disable unsecured use of port 389? I am using
>> FreeIPA, so the client setup uses port 389 with TLS and that is fine,
>> but I'd like to be able to not allow unsecured connections as much
>> as possible.
>>
>> I was able to do this in OpenLdap, but haven't seen a comparable
>> solution in ds-389.
> http://www.port389.org/docs/389ds/howto/howto-require-secure-binds.html
The link Rob provided is the best option for you, but for the sake of
completeness you can also disable the 389 port (but then you can't use
StartTLS):
http://www.port389.org/docs/389ds/howto/howto-listensslonly.html
>
> rob
> _______________________________________________
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
--
389 Directory Server Development Team
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
No comments:
Post a Comment