We recieved the following notice about our InfogixInsight setup. Can you advise how to fix/remedy this? Insight is on our Windows Server and an Oracle Database back end.
"Security logs show that your application server is making unsecure LDAP Binds to Active Directory. Due to this security risk, future updates to the active directory domain controllers will be blocking these types of requests. Unless corrected, these changes will most likely render your application unusable.
Please work with your server team and application vendor to address this issue as soon as possible. In most cases it may just need to change from normal LDAP to secure LDAPS. In other cases, it may require an application patch or upgrade.
The following client performed a SASL (Negotiate/Kerberos/NTLM/Digest) LDAP bind without requesting signing (integrity verification), or performed a simple bind over a clear text (non-SSL/TLS-encrypted) LDAP connection.
Client IP address:
Identity the client attempted to authenticate as:
Binding Type: 1"
Please sign in to leave a comment.