[31618] in Kerberos
SASL binding with SSL encryption
daemon@ATHENA.MIT.EDU (Xu, Qiang (FXSGSC))
Tue Oct 27 01:57:25 2009
From: "Xu, Qiang (FXSGSC)" <Qiang.Xu@fujixerox.com>
To: "kerberos@mit.edu" <kerberos@mit.edu>
Date: Tue, 27 Oct 2009 13:56:28 +0800
Message-ID: <D8C9BC7FFCF8154FB7141EB8DB609C172F0F1942BA@SGPAPHQ-EXSCC01.dc01.fujixerox.net>
Content-Language: en-US
MIME-Version: 1.0
X-MAIL-FROM: <qiang.xu@fujixerox.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi, all:
I am using Mozilla LDAP library to do SASL binding with SSL encryption against Active Directory. To make it work, it is necessary to set the security option "maxssf=0".
Still, in testing against AD in Windows 2003 Server (or Windows 2000 Server), the binding result is good and bad alternatively, exhibiting a pingpong style. In contrast, if I do the same test against AD in Windows 2008 Server, the binding is always good.
Is a known issue of AD in Windows 2003/2000 Server, and if there is any patch available? Just want to see if anyone in this list has had the same experience as mine.
Thanks,
Xu Qiang
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
