I am looking at migrating my user authtication method from the ACS CiscoSecure database to use the External Windows database.
I want to know if there is a stonger encryption method than the default Base64 communication between ACS and Windows. This is a concern because I have managed to sniff the network and capture the user authentication conversation between ACS & Windows and very easily unencrypt the clear text in the communication packets to reveal the user password passed to Windows.
I am using ACS v3.2, is there a way of configuring an ecryption method such as Kerberos to be used for communication between ACS and Windows?
Any assistance or guidance would be much appreciated.