Show Table of Contents
9.5. Displaying the Encryption Protocols Enabled in Directory Server
To display the enabled encryption protocols in Directory Server:
# ldapsearch -D "cn=Directory Manager" -W -p 389 -h server.example.com -x \ -s base -b 'cn=encryption,cn=config' sslVersionMin sslVersionMax dn: cn=encryption,cn=config sslVersionMin: TLS1.0 sslVersionMax: TLS1.2
The
sslVersionMin
and sslVersionMax
parameter control which encryption protocol versions Directory Server uses. By default, only TLS 1.0 and later versions of the protocol are enabled.
Important
For security reasons, none of the parameters should be set to the insecure
SSL2
or SSL3
protocol versions.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.