Originally posted by: jpc@pt.ibm.com
How can we make sure we're contacting the correct LDAP server ? (i.e. validate the server's certificate)
I can find no place to load a list of acceptable CAs, and without that, the LDAP connection is subject to Man-in-the-Middle attacks.
Can we please add that ?