On 3/10/20 4:07 PM, Rob Crittenden wrote:
Matthew Aguirre wrote:
Is there a way to disable unsecured use of port 389? I am using
FreeIPA, so the client setup uses port 389 with TLS and that is fine,
but I'd like to be able to not allow unsecured connections as much
as possible.
I was able to do this in OpenLdap, but haven't seen a comparable
solution in ds-389.
http://www.port389.org/docs/389ds/howto/howto-require-secure-binds.html
The link Rob provided is the best option for you, but for the sake of
completeness you can also disable the 389 port (but then you can't use
StartTLS):
http://www.port389.org/docs/389ds/howto/howto-listensslonly.html
rob
_______________________________________________
389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
--
389 Directory Server Development Team
_______________________________________________
389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
