1. Manuals
  2. Brands
  3. Netscape Manuals
  4. Server
  5. NETSCAPE DIRECTORY SERVER 7.0 - DEPLOYMENT
  6. Deployment manual

Securing Connections With Ssl; Sasl Authentication And Encryption - Netscape DIRECTORY SERVER 7.0 - DEPLOYMENT Deployment Manual

Hide thumbs
Table of Contents

Advertisement

Database encryption allows individual attributes to be encrypted as they are stored
in the database. When configured, every instance of a particular attribute, even
index data, will be encrypted and can only be accessed via a secure channel, such
as SSL/TLS.
For more information on using database encryption, see chapter 3, "Configuring
Directory Databases," in the Netscape Directory Server Administrator's Guide.

Securing Connections with SSL

After designing your authentication scheme for identified users and your access
control scheme for protecting information in your directory, you need to design a
way to protect the integrity of the information passed among servers and client
applications.
To provide secure communications over the network, you can use the LDAP
protocol over the Secure Sockets Layer (SSL).
SSL can be used in conjunction with the RC2 and RC4 encryption algorithms from
RSA. The encryption method selected for a particular connection is the result of a
negotiation between the client application and Directory Server.
SSL can also be used in conjuction with CRAM-MD5, which is a hashing
mechanism that guarantees that information has not been modified during
transmission.
Directory Server can have SSL-secured connections and non-SSL connections
simultaneously.
For information about enabling SSL, refer to the Netscape Directory Server
Administrator's Guide.

SASL Authentication and Encryption

Directory Server supports LDAP client authentication through the Simple
Authentication and Security Layer (SASL), an alternative to SSL/TLS and a native
way for some applications to share information securely.
SASL is a security framework, meaning it sets up a system that allows different
mechanisms to authenticate a user to the server, depending on what mechanism is
enabled in both client and server applications. It can also establish an encrypted
session between the client and a server.
Securing Connections with SSL
Chapter 7
Designing a Secure Directory
163

Advertisement

Table of Contents
loading

Related Manuals for Netscape NETSCAPE DIRECTORY SERVER 7.0 - DEPLOYMENT

Related Content for Netscape NETSCAPE DIRECTORY SERVER 7.0 - DEPLOYMENT

This manual is also suitable for:

Netscape directory server 7.0

Table of Contents