Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  15. Appendix B: PowerExchange Glossary

LDAP StartTLS Extended Operation

LDAP StartTLS Extended Operation

LDAP servers are usually configured for both plain text (unencrypted) and secured (encrypted) communication. Conventionally, port 389 is dedicated to plain requests and port 636 is dedicated to secured requests. The StartTLS extension allows an application to make both plain text and secured requests on a single port that is normally used for plain text communications. Using StartTLS avoids the need for a dedicated secured port.
You can configure PowerExchange to use the StartTLS extension with any of the three levels of LDAP security.
To enable use of the StartTLS extension, incude the START_TLS=Y parameter in the LDAP_TLS or LDAP_OPENSSL statement in the DBMOVER configuration file. Also, change any port settings to use the plain text port.
For examples of how to configure StartTLS for the three security levels, see Example DBMOVER LDAP Configurations.