LDAP simple bind authentication using port 389

Discussion in 'Active Directory' started by Ben English, Jan 15, 2009.

  1. Ben English

    Ben English Guest

    Hi,

    I'd like to use simple bind over LDAP port 389 to authenticate to a Windows
    Server 2003 active directory.

    Is this enabled by default in Windows Server 2003?

    Are there any security risks with this?

    Also what needs to be done to enable simple bind over SSL for LDAP?

    Thanks for your help.
     
    Ben English, Jan 15, 2009
    #1
    1. Advertisements

  2. Yes, no problem.
    Yes, the password is transmitted as clear-text. You could use LDAP SASL
    bind with DIGEST-MD5 to slightly mitigate the risk.
    You have to install a SSL cert for the DC.

    Ciao, Michael.
     
    Michael Ströder, Jan 15, 2009
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.