Security

last person joined: 4 minutes ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

Clearpass : Data Signing with Bind

Jump to Best Answer
  • 1.  Clearpass : Data Signing with Bind

    Posted Jan 23, 2016 02:19 AM

    Hi

    In clearpass, I tried to add a AD under Configuration » Authentication » Sources » Add - XX_AD , and test the connection using normal ldap,port 389 , got the following error:

    image004.jpg

     

    Checked with the admin and he said the AD was hardened to support data signing only over ldap,and he does not want to make any changes to the AD (like configure ssl-ldap on the AD ), base on this article here, either force the ldap client to support data signing , unharden by allowing normal bind , or use ldap-ssl.

    Does anyone know if clearpass is capable of data-signing ?



  • 2.  RE: Clearpass : Data Signing with Bind
    Best Answer

    Posted Jan 25, 2016 02:54 PM

    I checked with our DEV team and currently it's not supported as of now. If they really want to harden the AD, they should be using SSL.