Previous Topic: SSL AuthenticationNext Topic: How a Directory Connection Is Established

Administration GuideSet Up AuthenticationAuthentication LevelsSSL AuthenticationHow an SSL Connection Is Established

How an SSL Connection Is Established

An SSL connection always starts with an exchange of messages between the client and the DSA server, and is commonly referred to as the SSL handshake. The handshake allows both the DSA and client to authenticate themselves using public-key techniques (trusted certificates).

The following diagram illustrates the first part of the SSL certificate-based authentication process:

  1. The client sends a bind request, including a certificate.
  2. DSA validates the connection request by checking the validity dates and checking the issuer of the certificate against the configured trusted roots.
  3. If the certificate details are correct, the DSA establishes an SSL connection with the client application.