System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP)
Previous Next

Generic Directory Server Requirements for LDAP

To support LDAP clients based on Solaris 9 or later Solaris versions, the server, regardless of what brand, must support the LDAP v3 protocol and compound naming and auxiliary object classes. In addition, at least one of the following controls must be supported.

  • Simple paged-mode (RFC 2696)

  • Virtual List View controls

    The server must support at least one of the following authentication methods.

    anonymous

    simple

    sasl/cram-MD5

    sasl/digest-MD5

    sasl/GSSAPI

If using pam_unix, the server must support storing passwords in UNIX crypt format.

If using TLS, the server must support SSL or TLS.

If using sasl/GSSAPI, the server must support SASL, GSSAPI, Kerberos 5 authentication. Support for GSS encryption over the wire is optional.

Previous Next