Does CA LDAP for Top Secret Support SASL (Simple Authentication And Security Layer)?

Document ID : KB000016673
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

Support for CA LDAP for Top Secret Support SASL (Simple Authentication And Security Layer)?

Question:

Using JXplorer to connect to CA LDAP for Top Secret using a SASL (Simple Authentication And Security Layer) connection and getting the following error messages in the LDAP log:
 TLS trace: SSL_accept:error in SSLv2/v3 read client hello A            
 TLS: can't accept.                                                     
 TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
./s23_srvr.c:597                                                        
 connection_read(8): TLS accept error error=-1 id=1, closing

Does the CA LDAP Server support the Simple Authentication And Security Layer (SASL) authentication scheme?

Does CA LDAP for Top Secret support SASL?

Answer:

At this time, the CA LDAP Server only supports simple binds. It doesn't support other authentication schemes such as SASL or Kerberos.