Can there be a special policy in AD for this kind of accounts? Sorry, AD
is really not my specialty.
Francisco
Michael Ströder wrote:
Francisco Estanqueiro wrote:
we're having a problem in our CAS instances. We use Active Directory as
our credential database but our bind account is being randomly locked by
Active Directory, causing CAS to fail.
Do you have an automatic lockout after bad password retrys? Then anybody can
easily stop CAS from working by simply sending bad password attempts (e.g. by
LDAP simple bind) for the CAS service account. Silly password policies offer a
possibility for very easy DoS attacks.
Ciao, Michael.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
