Does CA LDAP for Top Secret Support SASL (Simple Authentication And Security Layer)?

book

Article ID: 16673

calendar_today

Updated On:

Products

CA-24X7 High-Availability Manager for DB2 for z/OS CA-Batch Processor Compile QQF CA Data Compressor for DB2 for z/OS Data Navigator for DB2 UDB for z/OS CA-DB Delivery for DB2 CA Unicenter NSM CA Log Compress DBA for DB2 Guide Online CA InfoRefiner Advantage InfoRefiner Advantage InfoRefiner Maint Upgrade CA InfoTransport Advantage InfoTransport Maint Upgrade Online Reorg for DB2 for z/OS CA RC/Update for DB2 for z/OS Query Analyzer RI Editor for DB2 for z/OS DB2 TOOLS- DATABASE MISC

Issue/Introduction

Support for CA LDAP for Top Secret Support SASL (Simple Authentication And Security Layer)?



Using JXplorer to connect to CA LDAP for Top Secret using a SASL (Simple Authentication And Security Layer) connection and getting the following error messages in the LDAP log:
 TLS trace: SSL_accept:error in SSLv2/v3 read client hello A            
 TLS: can't accept.                                                     
 TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
./s23_srvr.c:597                                                        
 connection_read(8): TLS accept error error=-1 id=1, closing

Does the CA LDAP Server support the Simple Authentication And Security Layer (SASL) authentication scheme?

Does CA LDAP for Top Secret support SASL?

Environment

Release:
Component: GEN

Resolution

At this time, the CA LDAP Server only supports simple binds. It doesn't support other authentication schemes such as SASL or Kerberos.