Administration GuideSet Up AuthenticationAuthentication LevelsSSL Authentication › How an SSL Connection Is Established

Previous Topic: SSL Authentication

Next Topic: How a Directory Connection Is Established
How an SSL Connection Is Established

An SSL connection always starts with an exchange of messages between the client and the DSA server, and is commonly referred to as the SSL handshake. The handshake allows both the DSA and client to authenticate themselves using public-key techniques (trusted certificates).

The following diagram illustrates the first part of the SSL certificate-based authentication process:

  1. The client sends a bind request, including a certificate.
  2. DSA validates the connection request by checking the validity dates and checking the issuer of the certificate against the configured trusted roots.
  3. If the certificate details are correct, the DSA establishes an SSL connection with the client application.