On Fri, Apr 05, 2019 at 10:12:21AM -0400, Rob Crittenden wrote: > > 389-ds is unaware of that negotiation so wouldn't be able to log it. It > only gets the negotiated cipher and does log that. > > There are also SSL proxies that can decode parts of the handshake which > can display the cipher list, like ssltap, but it would require you to > change the listening port of 389-ds so that the proxy can own 389/636. Thank you for the kind reply, Rob. -Bryan _______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
