Bug #296

Required SSL/TLS Ignored

Added by D Joid over 9 years ago. Updated over 8 years ago.

Target version:
Start date:
Due date:
% Done:


Estimated time:
Affected version:


My Openfire server requires SSL/TLS encryption on the standard 5222 port. When I try to connect, Beem gives me Error during authentication, bad login or password. However, in the Openfire Info Log it shows 2010.08.27 12:06:21 User Login Failed. PLAIN authentication failed. However, I checked Require SSL/TLS within the Beem client and I've triple-checked my login credentials.


#1 Updated by Frédéric Barthéléry over 9 years ago

  • Status changed from New to Feedback

I think the openfire log tell you which SASL mechanism is used for your connection. In your case, it is the PLAIN mechanism.
The SASL authentication is made after the TLS encryption. So, the connection is encrypted and then the password is sent in plain in the encrypted connection in opposition to a md5 mechanism which sends a md5 hash of the password.

The default is to use TLS encryption if available so it is not required to check the Require SSL/TLS option.
However you seems to have an issue with your authentication, I suggest you to disable the TLS requirement on your openfire server and see if it works better.

#2 Updated by D Joid over 9 years ago

We use two different XMPP clients and both connect fine with TLS. Disabling TSL requirement is not an option for us.

#3 Updated by Frédéric Barthéléry over 9 years ago

I agree that TLS in an absolute requirement. I suggest this only for debugging to see if you can capture some packet to understand why you cannot connect. Because it does not look like a TLS issue.

#4 Updated by Frédéric Barthéléry almost 9 years ago

  • Target version set to 0.1.6

#5 Updated by Frédéric Barthéléry over 8 years ago

  • Status changed from Feedback to Resolved

#6 Updated by Frédéric Barthéléry over 8 years ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF