Adding a little TLS complexity to authentication_ldap_simple
In a previous post I showed that by default when authentication_ldap_simple communicates with a Windows Domain Controller (or any other LDAP service), then the password is transmitted unencrypted during authentication. This time I’ll demonstrate how to close this loophole. A pre-requisite is that the Domain Controller needs to be configured to accept secure connections. This is …
Adding a little TLS complexity to authentication_ldap_simple Read More »