rlm_ldap: Limit accepted TLS versions on LDAPS

Alan DeKok aland at deployingradius.com
Wed Dec 9 17:16:01 CET 2020

> On Dec 9, 2020, at 10:48 AM, Michael Ströder via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
> On 12/9/20 3:36 PM, Alan DeKok wrote:
>> And the libldap API doesn't provide a way to say "require TLS 1.2"
> How about using LDAP_OPT_X_TLS_PROTOCOL_MIN described in ldap_set_option(3)?

  See commit e789729285e

  This should hopefully work.

  Alan DeKok.

More information about the Freeradius-Users mailing list