SSL for Server Auth not checking CN in Subject

General Discussion about LDAP Administrator

Moderator: Support

SSL for Server Auth not checking CN in Subject

Postby smithdu » Mon Apr 09, 2007 10:34 pm

It appears the 2.6 browser negotiates SSL even if the SSL cert presented by the LDAP server contains an invalid CN.

Steps to recreate:
1. Configure a profile in the browser to connect to serverA.domain.com
2. Put an SSL cert on serverA with CN=ServerB.domain.com in the subject field.
3. Connect with 2.6 browser and it does not even give a warning.

SSL is used for server auth and encryption. It appears the 2.6 browser is somehow ignoring the server auth part. I realize the next version is supposed to use the MS API and this may not get much interest. I just would like to know if I am missing something.
smithdu
 
Posts: 1
Joined: Fri Apr 06, 2007 10:01 pm

Postby Support » Thu Apr 12, 2007 10:55 am

Probably some problems exist, but, unfortunately, LDAP Browser development is frozen, so chances are really low that the issue would be fixed any time soon.
Support
 
Posts: 896
Joined: Sun Aug 12, 2001 12:00 am


Return to General Discussion

Who is online

Users browsing this forum: No registered users and 1 guest

cron