<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Hi,<br>
<br>
Ovirt presently supports only GSSAPI and SIMPLE authentication
against an LDAP server. The latter is far to weak to be used in a
production environment. The first is only offered as an external
authentication mechanism in many LDAP servers.<br>
<br>
I suggest adding DIGEST-MD5 support to oVirt which is a secured way
of authenticating to an LDAP server and which is a required
authentication mechanism in LDAPv3 specification. (see
<a class="moz-txt-link-freetext" href="http://www.ietf.org/rfc/rfc2829.txt">http://www.ietf.org/rfc/rfc2829.txt</a> paragraph 4.2).<br>
<br>
This would make it possible to access every LDAP servers securely
without the need to implement the GSSAPI mechanism.<br>
<br>
I also actively suggest to add support for the OpenLDAP Directory
server. It is a widely used LDAP server (and the one we use at our
University by the way...).<br>
<br>
Are there developers wishing to implement such support (DIGEST-MD5
and OpenLDAP) ?<br>
<br>
Or please tell me what I should do to start implementing it ?<br>
<br>
Cheers,<br>
<br>
Thierry<br>
<br>
<br>
<div class="moz-signature">-- <br>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="content-type">
<title>signature-TK</title>
<small><span style="color: rgb(15, 67, 106); font-weight: bold;">Thierry
Kauffmann</span><br>
<span style="color: rgb(15, 67, 106);">Chef du Service
Informatique // </span><span style="color: rgb(15, 67, 106);">Faculté
des Sciences // </span><span style="color: rgb(15, 67, 106);">Université
de Montpellier 2</span></small><br>
<br>
<table style="text-align: left; height: 111px; width: 924px;"
border="0" cellpadding="10" cellspacing="0">
<tbody>
<tr>
<td style="vertical-align: middle; text-align: center;"><a
href="http://sif.info-ufr.univ-montp2.fr/"><img
style="border: 0px solid ; width: 100px; height:
106px;" alt="SIF - Service Informatique de la Faculté
des Sciences"
src="cid:part1.08090702.09080508@univ-montp2.fr"></a></td>
<td style="border-right: 2px solid rgb(15, 67, 106);
vertical-align: middle; color: rgb(180, 202, 0);
text-align: center; width: 211px;"><a
href="http://www.univ-montp2.fr/"><img style="border:
0px solid ; width: 194px; height: 106px;" alt="UM2 -
Université de Montpellier 2"
src="cid:part3.02060602.07070108@univ-montp2.fr"></a></td>
<td style="vertical-align: top; color: rgb(180, 202, 0);
width: 547px; line-height: 13px;"><small><span
style="color: rgb(15, 67, 106); font-weight: bold;"></span><span
style="color: rgb(15, 67, 106);"></span>Service
informatique de la Faculté des Sciences (SIF)<br>
Université de Montpellier 2<br>
<span style="color: rgb(71, 189, 205);">
CC437 // </span><span style="color: rgb(71, 189,
205);">Place Eugène Bataillon // </span><span
style="color: rgb(71, 189, 205);">34095 Montpellier
Cedex 5</span><br>
<span style="color: rgb(71, 189, 205);"><br>
Tél : 04 67 14 31 58</span><br>
<span style="color: rgb(71, 189, 205);">email : </span><a
style="color: rgb(15, 67, 106);"
href="mailto:thierry.kauffmann@univ-montp2.fr">thierry.kauffmann@univ-montp2.fr</a><br>
<span style="color: rgb(71, 189, 205);">web : </span><a
style="color: rgb(15, 67, 106);"
href="http://sif.info-ufr.univ-montp2.fr/">http://sif.info-ufr.univ-montp2.fr/</a>
<a style="color: rgb(15, 67, 106);"
href="http://www.fdsweb.univ-montp2.fr/">http://www.fdsweb.univ-montp2.fr/</a></small>
</td>
</tr>
</tbody>
</table>
<br>
</div>
</body>
</html>