Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass : Data Signing with Bind

This thread has been viewed 0 times

  • 1.  Clearpass : Data Signing with Bind

    Posted Jan 23, 2016 02:19 AM

    Hi

    In clearpass, I tried to add a AD under Configuration » Authentication » Sources » Add - XX_AD , and test the connection using normal ldap,port 389 , got the following error:

    image004.jpg

     

    Checked with the admin and he said the AD was hardened to support data signing only over ldap,and he does not want to make any changes to the AD (like configure ssl-ldap on the AD ), base on this article here, either force the ldap client to support data signing , unharden by allowing normal bind , or use ldap-ssl.

    Does anyone know if clearpass is capable of data-signing ?



  • 2.  RE: Clearpass : Data Signing with Bind
    Best Answer

    Posted Jan 25, 2016 02:54 PM

    I checked with our DEV team and currently it's not supported as of now. If they really want to harden the AD, they should be using SSL.