SSL is recommended if you have selected the Simple authentication mechanism because Simple authentication passes passwords in clear text.
Table 9-3 Recommended Security Configuration for the Simple Authentication Method
Parameter |
Description and Recommended Setting |
---|---|
Authentication ID |
The account the driver uses to access the domain data. Use LDAP format for the Authentication ID. For example, cn=IDMadmin,cn=Users,dc=domain,dc=com |
Authentication Context |
IP address of domain controller. |
Password |
The password for the specified Authentication ID. |
Digitally sign communications |
Select No. |
Digitally sign and seal communications |
Select No. |
Use SSL for encryption |
Select Yes. SSL requires that the Microsoft server running the driver shim imports the domain controller’s server certificate imported. For more information, see |