[DOCS-11366] Reasons for enabling LDAPS Created: 27/Feb/18  Updated: 29/Oct/23  Resolved: 09/Mar/18

Status: Closed
Project: Documentation
Component/s: Ops Manager
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Minor - P4
Reporter: Davi Ottenheimer Assignee: Anthony Sansone (Inactive)
Resolution: Fixed Votes: 0
Labels: authentication, ldap, ssl
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified
Environment:

https://docs.opsmanager.mongodb.com/current/tutorial/enable-ldap-authentication-for-group/#select-ldap


Participants:
Days since reply: 5 years, 48 weeks, 5 days ago
Story Points: 0.5

 Description   

Enable LDAP Authentication for your Ops Manager Project has the phrase:

"SSL is not required for use with LDAP authentication"

Could we replace this with a warning or at least informational box? Perhaps something more like:

"Please note that LDAP by default is not encrypted and sends credentials (username and password) in plaintext, which could compromise them on insecure networks. Use of SSL/TLS with LDAP (LDAPS) to encrypt authentication is strongly recommended. Many modern directory services, such as Active Directory or Active Directory Domain Controllers, require encrypted communications."



 Comments   
Comment by Githook User [ 09/Mar/18 ]

Author:

{'email': 'tony.sansone@mongodb.com', 'name': 'Tony Sansone', 'username': 'atsansone'}

Message: (DOCS-11366): Add caution about SSL for LDAP.
Branch: v3.6
https://github.com/10gen/mms-docs/commit/6368fa562649ece144586bccb468bfe872285100

Comment by Githook User [ 09/Mar/18 ]

Author:

{'email': 'tony.sansone@mongodb.com', 'name': 'Tony Sansone', 'username': 'atsansone'}

Message: (DOCS-11366): Add caution about SSL for LDAP.
Branch: master
https://github.com/10gen/mms-docs/commit/b1ad32c5a98e5dabd99fed64669a643383d73f72

Generated at Thu Feb 08 08:02:40 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.