12-16-2024 11:27 AM
Hi!
Can WLC 9800 authenticate clients against a LDAP server where the passwords are crypted (LDAP server returns a hash password, example userPassword = {SHA}ks9d6cm16tfmqr8cimfh3ad) or only againts clear-text passwords (which would be insecure)?
12-16-2024 11:33 AM
Both ways are possible and, of course, encrypted is better.
12-16-2024 12:08 PM
What about this article:
It says:
"Ensure server returns userPassword in cleartext, else authentication fails."
12-16-2024 12:19 PM
It seems this guide is for not encrypted traffic using port 389. encrypted traffic would be 636
12-16-2024 11:47 AM
I dont think only password is encrypted but whole packet exchange between wlc 9800 and LDAP will encap inside tls secure packet.
So sure using tls is more secure.
MHM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide