Previous Topic: Clear-Password Authentication

Next Topic: SSL Authentication

How a Connection Is Established with Clear-Password Authentication

Clear-password authentication consists of sending the DSA the DN of the client, and the client's password.

The diagram below illustrates the following steps:

  1. The client sends a bind request with its username and password.
  2. The DSA checks the username and password against the relevant DN entry.
  3. If the username exists and the password matches, the bind is authenticated and established.

    If the username does not exist, or the password is incorrect, an BIND REFUSE message is returned to the client.

    Simple Bind

Note: Once a bind or connection is established, all further client operations or directory requests are subject to access control rules.


Copyright © 2009 CA. All rights reserved. Email CA about this topic