On 8/3/21 6:34 AM, Sam Morris via FreeIPA-users wrote:
> But is it possible to completely disable port 389 if we don't
want
> any client to ever try non-SSL connections?
That will block communication between IPA servers, and from clients to servers.
Just for completeness, setting nsslapd-port to zero will disable it, but
as mentioned above it will break IPA, etc.
Mark
--
Sam Morris <
https://robots.org.uk/>
PGP: rsa4096/CAAA AA1A CA69 A83A 892B 1855 D20B 4202 5CDA 27B9s?
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedoraho...
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
--
Directory Server Development Team