Cisco Community
English
Register
Great changes are coming to Cisco Community in July. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
696
Views
0
Helpful
3
Replies
ebezombes
Beginner
Beginner
‎11-25-2011 01:57 AM
‎11-25-2011 01:57 AM

LMS 3.2: does LMS support LDAPS ?

Hi,

Does LMS 3.2 support LDAPS ?

Many thanks,

Elisabeth

Labels:
0 Helpful
3 REPLIES 3
Joe Clarke
Hall of Fame Cisco Employee Hall of Fame Cisco Employee
Hall of Fame Cisco Employee
‎11-25-2011 05:40 PM
‎11-25-2011 05:40 PM

Not LDAPS, but you can enable MD5 password hashing by uncommenting the LDAP_AUTHENTICATION_MECHANISM line in NMSROOT/lib/classpath/cam.properties.  If this is enabled, LMS will not send LDAP credentials in clear text.  This can work with MS AD.

0 Helpful
mmisonne
Explorer
Explorer
In response to Joe Clarke
‎12-20-2011 04:54 AM
‎12-20-2011 04:54 AM

Hello

I have the same question with LMS4.01

After uncommenting  the following line in cam.properties

"LDAP_AUTHENTICATION_MECHANISM=DIGEST-MD5"

It seems that this does not encrypt the username and password .

Because we can see  it with a wireshark on LMS

     [+]Internet protocol: source = @IP serveur LMS ;dest:= @IP serveur AD

                xxxxxxxxxxxUsername xxxxxx Passwordxxxxxx

Have you got any idea ?

Michel Misonne

0 Helpful
Joe Clarke
Hall of Fame Cisco Employee Hall of Fame Cisco Employee
Hall of Fame Cisco Employee
In response to mmisonne
‎12-21-2011 12:01 AM
‎12-21-2011 12:01 AM

If the server doesn't support the DIGEST-MD5 SASL authentication mechanism, LMS will fallback to simple.

0 Helpful
Latest Contents
Cisco Champion Radio: S9|E25 SD-WAN and Ubiquitous Cloud Sec...
Created by Amilee San Juan on 06-29-2022 02:35 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E25 Follow us: twitter.com/ciscochampions With applications and users everywhere, the networks are now, more than ever, being tasked with delivering consistent protection while providing an exceptional user exper... view more
Cisco Champion Radio: S9|E24 Cisco Radio Aware Routing
Created by Amilee San Juan on 06-28-2022 01:30 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E24 Follow us: https://twitter.com/CiscoChampion  Cisco Radio Aware Routing addresses several of the challenges faced when merging IP routing and radio communications in mobile networks, especially those exhibiti... view more
Cisco Champion Radio: S9|E23 The Cisco Catalyst 9136 Wi-Fi 6...
Created by Amilee San Juan on 06-28-2022 01:21 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E23 Follow us: https://twitter.com/CiscoChampion The Wi-Fi 6E Catalyst 9136 access point takes advantage of the 6-GHz band to produce a network that is more reliable and secure, with higher throughput, more ... view more
DR and the Type-2 LSA in OSPFv3 versus OSPFv2
Created by Meddane on 06-24-2022 04:35 PM
0
0
0
0
When moving from OSPFv2 to OSPFv3, there are many changes in the format of the LSAs Type, but the most known changes are: IP prefix informations are no longer carried in Type-1 LSA and Type-2 LSA, new LSAs Type 8 and 9 are added to carry these prefixes. L... view more
Preview of the Book OSPF CCIE The Ultimate Ccie Enterprise E...
Created by Meddane on 06-23-2022 08:45 PM
0
0
0
0
Read a preview of my book OSPF The ultimate for CCIE Enterprise and Infrastructure exam in Books Google Doc.   Read a preview of my book OSPF The ultimate for CCIE Enterprise and Infrastructure exam in Books Google Doc #CCIE #Cisco #exam #Enterprise ... view more
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Video
+ Project Story
Find more resources
Discussions
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Related support document topics
Recognize Your Peers
Spotlight Award Nomination
Content for Community-Ad