Enable option to use LDAPS for authentication with Active Directory

5 votes

We are working with vendors to mitigate security issues with vendor applications using simple LDAP for authentication to Active Directory. A Microsoft high vulnerability was released earlier this year warning of LDAP configurations that don't conform to channel binding and signing during the negotiation between systems; the clear text credentials passed using simple LDAP is vulnerable to a man-in-the-middle attack. The fix is to enforce binding and signing, or enable LDAPS, which I understand you don't support either method at this time.

Collecting community feedback OpCon Suggested by: Hidden identity Upvoted: 18 Dec, '23 Comments: 1

Comments: 1