LDAP Secure without certificate, is it secure?

Forum|Forum|11 years ago
July 31, 2014
2 replies
5131 views

Hi, As my attachment, LDAP secure connection without any certificates, is it secure yet? I used Wireshare to capture the packets, all is encrypted. So to answer to my above question, it should be secure enough. So why we still need to configure certificate here? My thinking may refer to LDAP server want to authenticate LDAP clients. Any idea? Thanks

Yw68398.jpg

Bromont_FTNT

Staff

It' s extra security to enforce the presented certificate is signed by the right CA

lightmoon1992

New Member

For simple authentication task, non secure connection can do it, however if you need to encrypt the communication " for security sake" between the FortiGate and LDAP, you may select secure connection. moreover, if you are willing to challenge the user for password change, this is not doable but through secured connection. so its really depend on what you expect to have Mohammad

networkingkoolAuthor

New Member

Hi mohammad, I have no need to challenge the user for password change, for this purpose we focus on another technique. I captured the traffic between LDAP and Fortigate, I can see all password. Therefore I think we should enable LDAP secure right as possible. @Bromont: Thanks your reply. I think the idea here is LDAP server require Fortigate to authenticate itself to LDAP. It is extra security layer. Thanks

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded