Index Changes

Understanding the LDAP Binding Component

Table of Contents


Security for LDAP Transactions

The LDAP server stores user names and passwords, so all transactions have to be secure. You can configure the following security options using the LDAP Binding Component:

  • Secure Socket Layer (SSL) - A cryptographic protocol that provides privacy and data integrity for communications over TCP/IP networks such as the Internet.
  • Transport Layer Security (TLS) - A cryptographic protocol that provides privacy and data integrity for communications over TCP/IP networks such as the Internet.
  • TLS on Demand - Selecting this option allows users to establish an SSL connection on demand.
    • Use the startTLS function to initiate a secure SMTP connection between two servers using the Secure Sockets Layer (SSL) (also known as TLS). Once the connection is established all future communication between the two servers is encrypted.
    • Use the stopTLS function to stop an SMTP connection between two servers using the Secure Sockets Layer (SSL) (also known as TLS).
  • KeyStore and TrustStore Management - The Keystore is used for key or certificate management when establishing SSL connections. The TrustStore is used for CA certificate management when establishing SSL connections.
  • Credential File Management - The Credential File Management feature provides users the credentials needed when authenticating logins other than anonymous login.

Previous Next


Return to GlassFish ESB Documentation Home

JSPWiki v2.4.100
[RSS]
« Home Index Changes Prefs
This page (revision-2) was last changed on 24-Jul-09 14:16 PM, -0700 by CarolT