On 15 Jul 2022, at 11:02, Mark Reynolds via FreeIPA-users
<freeipa-users(a)lists.fedorahosted.org> wrote:
On 7/15/22 8:15 AM, Rob Crittenden via FreeIPA-users wrote:
> Ronald Wimmer via FreeIPA-users wrote:
>> The official RedHat doumentation states
>>
>>> The TCP port 389 is not required to be open on IdM servers for trust,
>>> but it is necessary for clients communicating with the IdM server.
>> Is this still true? Or could LDAPS/Port 636 be used as well?
> Used for what? Are you still talking about trust?
>
> Yes, port 636 can be used for LDAP traffic. It's been deprecated for
> years in favor of startTLS
Really? LDAPS deprecated? In our opinion startTLS should deprecated in favor of LDAPS.
Interesting... :-)
Yes. Everyone is favoring STARTTLS instead of SSL. SMTP done the same.
> but it's one of those things that isn't
> likely to go away for a while.
>
> rob
> _______________________________________________
> FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
> To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
> Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedoraho...
> Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
--
Directory Server Development Team
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedoraho...
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure