Bug 633803 - passwordisglobalpolicy attribute brakes TLS chaining
https://bugzilla.redhat.com/show_bug.cgi?id=633803
Resolves: bug 633803
Bug Description: passwordisglobalpolicy attribute brakes TLS chaining
Reviewed by: nkinder (Thanks!)
Branch: 389-ds-base-1.2.9
Fix Description: If not binding in cb_get_connection, we need to explicitly
do the start_tls. The start_tls and mechanism settings were not being
applied to the bind_pool connections.
I tried setting passwordIsGlobalPolicy on and off. That did not seem to make
a difference. I believe the problem is caused by the
nsslapd-require-secure-binds attribute set to "on".
setting.
Platforms tested: RHEL6 x86_64
Flag Day: no
Doc impact: no