Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
iammi Absent Member.
Absent Member.
240 views

Active Directory Reomte Loader SSL (no authentication)


Hello,

By default when using Active Directory driver with SSL , we must set
"kmo=certificatename" parameter, this to ebale the driver authenticate
the server

What if I want to set an SSL connexion with AD from AD driver, with no
authentication of the server ?

I use to do this from a java code, is that possible to set AD driver to
do SSL with no 'kmo' parameter (no certificate)

Regards


--
iammi
------------------------------------------------------------------------
iammi's Profile: http://forums.novell.com/member.php?userid=71308
View this thread: http://forums.novell.com/showthread.php?t=450151

Labels (1)
0 Likes
1 Reply
Anonymous_User Absent Member.
Absent Member.

Re: Active Directory Reomte Loader SSL (no authentication)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

First, some terminology specifics that make sure the question and answer
match.

The MAD driver, or the MAD shim, is the piece that the Remote Loader
loads (addriver.dll) to communicate with MAD. It has nothing to do with
the engine, though if you run in a situation without the Remote Loader
it can be used directly by the engine. The driver config is the part
that "runs" in the Engine, and which if you are using a Remote Loader
will connect to the Remote Loader.

The KMO parameter is for the engine/RL connection. You can setup a
SSL-less connection, though as I recall the engine will not send
sensitive data (as defined by the vault) across this connection, and
generally speaking it's a bad idea.

There is also an SSL option between the driver and MAD itself, which you
did not bring up and which typically is not needed because the RL runs
on a MAD DC so it is not using any networks for that connection.

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=iiZ2
-----END PGP SIGNATURE-----
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.