Tag Archives: security

LDAP: Hardening Server Security (so administrators can sleep at night)

Posted on July 31, 2013 by Terry Gardner

Client Connections Limit the total number of concurrent sessions to the server and limit the number of concurrent sessions per client Set size-limit, lookthrough-limit, and time-limit per client appropriate to client requirements (be aware of the server’s default settings, often … Continue reading

Posted in computing, LDAP, UnboundID | Tagged , | 2 Comments

LDAP: Password Modify Extended Request

Posted on November 12, 2011 by Terry Gardner

The Password Modify Extended Request is an LDAP extended operation which may be used to change passwords while requiring the existing password – which might be very important for security audits. The object identifier (OID) of the extended request is … Continue reading

Posted in computing, Java, LDAP | Tagged , , , , , , , | 2 Comments

LDAP: Last Logon Time and Last Logon IP Address

Posted on October 12, 2011 by Terry Gardner

Using password policies, the UnboundID Directory Server can record the entry’s last logon time and last logon IP address from which a connection authenticated. The password policy has ‘properties’ named: last-login-time-attribute last-login-time-format last-login-ip-address-attribute which specify the name of the attribute … Continue reading

Posted in computing, LDAP | Tagged , , , , , , | Leave a comment

LDAP: Defenses for the Directory Services Environment

Posted on June 12, 2011 by Terry Gardner

The Need For Defenses Directory Servers, as with any service provider, can be neutralized and their ability to provide directory services as specified in their Service Level Agreements (SLAs) compromised by client applications that consume large amounts of server resources. … Continue reading

Posted in computing, LDAP, performance, UnboundID | Tagged , , , , , , , , , , , | Leave a comment