Menu
▾
▴
perl-ldap-dev
|
From: Graham B. <gb...@po...> - 2001-01-24 20:00:41
|
----- Forwarded message from Douglas Gray Stephens <DGr...@sl...> -----
Date: Wed, 24 Jan 2001 19:03:25 +0000
To: per...@li...
Cc: gb...@po...
From: "Douglas Gray Stephens" <DGr...@sl...>
Subject: Connecting to LDAP over SSL
X-Mailer: emacs 20.7.1 (via feedmail 9-beta-7 I);
VM 6.90 under Emacs 20.7.1
Hi,
I am trying to connect to an LDAP server over SSL (i.e. port 636).
I looked at perldap (v1.4) and perl-ldap (v 0.22), and both hint that
they can connect to an LDAP over SSL. However perldap appears to want
to use a local certificate for client authenitcation, while is should
be possible to use SSL simple to secure the communications channel.
Using the following perl-ldap snippet can connect to the LDAP server
(without SSL):
use Net::LDAP;
$ldap = new Net::LDAP('ldap:389','timeout'=>300) or die "$@";
$mesg = $ldap->search ( # perform a search
base => "o=slb,c=AN",
filter => "alias=dgraystephens"
);
$mesg->code && die $mesg->error;
foreach $entry ($mesg->all_entries) { $entry->dump; }
however if I try to use an SSL connection, i.e.
use Net::LDAPS;
$ldap = new Net::LDAPS('ldap:636') or die "$@";
$mesg = $ldap->search ( # perform a search
base => "o=slb,c=AN",
filter => "alias=dgraystephens"
);
$mesg->code && die $mesg->error;
foreach $entry ($mesg->all_entries) { $entry->dump; }
then the code fails to run
Can't locate IO/Socket/SSL.pm in @INC (@INC contains: D:/Applications/Perl/lib D:/Applications/Perl/site/lib .) at D:/Applications/Perl/site/lib/Net/LDAPS.pm line 14.
BEGIN failed--compilation aborted at D:/Applications/Perl/site/lib/Net/LDAPS.pm line 14.
Compilation failed in require at temp.pl line 6.
BEGIN failed--compilation aborted at temp.pl line 6.
I can connect to over SSL to a WEB server (i.e. HTTPS).
The IO::Socket::SSL module is not included in the perl-ldap module
that is available via the package manager. I believe that the module
is (or was) part of the Bundle::Net::LDAP package
http://www.perldoc.com/cpan/Bundle/Net/LDAP.html
which I cannot locate?
Is IO::Socket::SSL (or the Bundle::Net::LDAP package) available for windows?
Has anyone managed to use perl-ldap (or another LDAP module) to
communicate with an LDAP server over SSL?
Thanks in advance,
Douglas.
--
================================
Dr. Douglas GRAY STEPHENS
SL-IT Security (Directories)
Schlumberger Cambridge Research
High Cross,
Madingley Road,
Cambridge.
CB3 0EL
ENGLAND
Phone +44 1223 325295
Fax +44 1223 311830
Email DGr...@sl...
================================
----- End forwarded message -----
|
|
From: Chris R. <chr...@me...> - 2001-01-26 08:43:22
|
Graham Barr <gb...@po...> wrote:
> ----- Forwarded message from Douglas Gray Stephens
> <DGr...@sl...> -----
>
> Date: Wed, 24 Jan 2001 19:03:25 +0000
> To: per...@li...
> Cc: gb...@po...
> From: "Douglas Gray Stephens" <DGr...@sl...>
> Subject: Connecting to LDAP over SSL
> X-Mailer: emacs 20.7.1 (via feedmail 9-beta-7 I);
> VM 6.90 under Emacs 20.7.1
>
>
> Hi,
>
> I am trying to connect to an LDAP server over SSL (i.e. port 636).
>
> I looked at perldap (v1.4) and perl-ldap (v 0.22), and both hint that
> they can connect to an LDAP over SSL. However perldap appears to want
> to use a local certificate for client authenitcation, while is should
> be possible to use SSL simple to secure the communications channel.
>
> Using the following perl-ldap snippet can connect to the LDAP server
> (without SSL):
> use Net::LDAP;
>
> $ldap = new Net::LDAP('ldap:389','timeout'=>300) or die "$@";
>
> $mesg = $ldap->search ( # perform a search
> base => "o=slb,c=AN",
> filter => "alias=dgraystephens"
> );
>
> $mesg->code && die $mesg->error;
>
> foreach $entry ($mesg->all_entries) { $entry->dump; }
>
> however if I try to use an SSL connection, i.e.
>
> use Net::LDAPS;
>
> $ldap = new Net::LDAPS('ldap:636') or die "$@";
>
> $mesg = $ldap->search ( # perform a search
> base => "o=slb,c=AN",
> filter => "alias=dgraystephens"
> );
>
> $mesg->code && die $mesg->error;
>
> foreach $entry ($mesg->all_entries) { $entry->dump; }
>
> then the code fails to run
> Can't locate IO/Socket/SSL.pm in @INC (@INC contains:
> D:/Applications/Perl/lib D:/Applications/Perl/site/lib .) at
> D:/Applications/Perl/site/lib/Net/LDAPS.pm line 14. BEGIN
> failed--compilation aborted at
> D:/Applications/Perl/site/lib/Net/LDAPS.pm line 14. Compilation failed
> in require at temp.pl line 6.
> BEGIN failed--compilation aborted at temp.pl line 6.
>
> I can connect to over SSL to a WEB server (i.e. HTTPS).
>
> The IO::Socket::SSL module is not included in the perl-ldap module
> that is available via the package manager. I believe that the module
> is (or was) part of the Bundle::Net::LDAP package
> http://www.perldoc.com/cpan/Bundle/Net/LDAP.html
> which I cannot locate?
Well I don't think it should be, as SSL support is pretty optional for
Net::LDAP.
> Is IO::Socket::SSL (or the Bundle::Net::LDAP package) available for
> windows?
There's no real reason why it shouldn't be, although it relies on another
module which needs to be built using a C compiler so it might not be a
straightforward install.
Have you looked at ActiveState's web site, or CPAN?
> Has anyone managed to use perl-ldap (or another LDAP module) to
> communicate with an LDAP server over SSL?
I have, and a couple of folks who beta tested the code have as well. I
suspect none of us were using Windows though.
> Thanks in advance,
>
> Douglas.
>
> --
>
> ================================
> Dr. Douglas GRAY STEPHENS
> SL-IT Security (Directories)
> Schlumberger Cambridge Research
> High Cross,
> Madingley Road,
> Cambridge.
> CB3 0EL
> ENGLAND
>
> Phone +44 1223 325295
> Fax +44 1223 311830
> Email DGr...@sl...
> ================================
>
>
> ----- End forwarded message -----
>
Cheers,
Chris
|
|
From: Douglas G. S. <gr...@ca...> - 2001-01-26 14:11:01
|
Chris, Thanks for your reply. At 08:43 on 26-January-2001, Chris Ridd wrote: > Graham Barr <gb...@po...> wrote: > > ----- Forwarded message from Douglas Gray Stephens <DGr...@sl...> ----- > > <snip> > > I can connect to over SSL to a WEB server (i.e. HTTPS). > > > > The IO::Socket::SSL module is not included in the perl-ldap module > > that is available via the package manager. I believe that the module > > is (or was) part of the Bundle::Net::LDAP package > > http://www.perldoc.com/cpan/Bundle/Net/LDAP.html > > which I cannot locate? > > Well I don't think it should be, as SSL support is pretty optional for > Net::LDAP. > > > Is IO::Socket::SSL (or the Bundle::Net::LDAP package) available for > > windows? > > There's no real reason why it shouldn't be, although it relies on another > module which needs to be built using a C compiler so it might not be a > straightforward install. > > Have you looked at ActiveState's web site, or CPAN? I have looked at the ActiveState's site for a packaged module, and drew a blank. I will experiment with building the IO::SOcket::SSL on windows (if I can find a compiler). > > Has anyone managed to use perl-ldap (or another LDAP module) to > > communicate with an LDAP server over SSL? > > I have, and a couple of folks who beta tested the code have as well. I > suspect none of us were using Windows though. Cheers, Douglas. -- ================================ Douglas GRAY STEPHENS SL-IT Security (Directories) Schlumberger Cambridge Research High Cross, Madingley Road, Cambridge. CB3 0EL ENGLAND Phone +44 1223 325295 Fax +44 1223 311830 Email DGr...@sl... ================================ |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X