Bug #296
Required SSL/TLS Ignored
Description
My Openfire server requires SSL/TLS encryption on the standard 5222 port. When I try to connect, Beem gives me Error during authentication, bad login or password. However, in the Openfire Info Log it shows 2010.08.27 12:06:21 User Login Failed. PLAIN authentication failed. However, I checked Require SSL/TLS within the Beem client and I've triple-checked my login credentials.
Updated by Frédéric Barthéléry about 14 years ago
- Status changed from New to Feedback
I think the openfire log tell you which SASL mechanism is used for your connection. In your case, it is the PLAIN mechanism.
The SASL authentication is made after the TLS encryption. So, the connection is encrypted and then the password is sent in plain in the encrypted connection in opposition to a md5 mechanism which sends a md5 hash of the password.
The default is to use TLS encryption if available so it is not required to check the Require SSL/TLS option.
However you seems to have an issue with your authentication, I suggest you to disable the TLS requirement on your openfire server and see if it works better.
Updated by D Joid about 14 years ago
We use two different XMPP clients and both connect fine with TLS. Disabling TSL requirement is not an option for us.
Updated by Frédéric Barthéléry about 14 years ago
I agree that TLS in an absolute requirement. I suggest this only for debugging to see if you can capture some packet to understand why you cannot connect. Because it does not look like a TLS issue.