Security

Windows LDAPS expired

René Jorissen on June 17, 2010 0 Comments • Tags: #authority #certificate #certsrv #expired #ldaps #windows

A lot of appliances and/or security solutions use LDAP to synchronize users from an Active Directory or an eDirectory environment. Active Directory is LDAP enabled by default. If you would like to harden your network,  you would like to use LDAPS. LDAPS is a term to refer to LDAP communication over SSL. Intercepted LDAPS traffic … Read More

Security

Secure LDAP between Softerra and Novell NDS

René Jorissen on April 22, 2009 0 Comments • Tags: #48 #browser #cert7db #communicator #key3db #ldap #ldaps #nds #netscape #novell #secure #softerra

Softerra LDAP Browser is a powerful tool for browsing servers, which support LDAP. Using Softerra LDAP Browser against a Novell NDS with secure LDAP is a different story. A secure LDAP connection is a connection which uses SSL certificates to encrypt the data stream. I had to use my LDAP Browser to query a Novell … Read More

Configuration Example, Proxy, Security

Change password through LDAPS on ISA server

René Jorissen on August 6, 2008 0 Comments • Tags: #2006 #authority #ca #fqdn #isa #key #ldaps #private #proxy #reverse #set #user

Today I received the question about allowing users to changes his/her password through webmail, whereby webmail is published via an ISA server 2006 reverse proxy. This is possible, but it requires the configuration of LDAPS to authenticate users. I started by configuring a Certificate Authority (CA) on a member server in the domain. During the … Read More

Other stuff...

Exchange 2007 with ISA 2006

René Jorissen on May 5, 2008 2 Comments • Tags: #2006 #2007 #access #active #exchange #isa #isaserverorg #ldaps #microsoft #outlook #owa #publish #radius #server #sync #web

Today I have be working on publishing Microsoft Exchange Outlook WebAccess and Active Sync to the Internet. We had some discussions with some Microsoft Consultants about a secure way to publish Outlook Web Access to the Internet, especially the authentication part of such a solution. Some people are talking about publishing OWA directly to the … Read More