Uploaded image for project: 'OpenICF'
  1. OpenICF
  2. OPENICF-681

LDAP connector: provide the ability to pick up a specific private key in a keystore using certificate alias

    Details

      Description

      JNDI, which is used by the LDAP connector, always picks up the first keys it finds in the keystore, as documented below:
      http://docs.oracle.com/javase/jndi/tutorial/ldap/security/ssl.html
      Client Requirements: This example requires the client to have an X.509 SSL client certificate. Moreover, the certificate must be stored as the first key entry in a keystore file. If this entry is password-protected, it must have the same password as the keystore.

      This should be configurable so that the connector only pick up the key specified in the configuration

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                gael Gael Allioux
                Reporter:
                gael Gael Allioux
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: