I am somewhat aware of how MS LDAP works, and am horrified. A key issue to me is that, by default, any user may display most all information about any other in a given 'container'.
Even if that is not true, our shop still considers the risks of exposing the 'family jewels' (the SE/HMC LAN) to -any- such attack vectors as unacceptable. YMMV -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Jousma, David Sent: Tuesday, April 07, 2009 6:50 AM To: [email protected] Subject: Re: HMC and LDAP It's Microsoft based. Active Directory? I'm not familiar with it at all. BTW, it only does password authentication. You still control who gets access to what. _________________________________________________________________ Dave Jousma Assistant Vice President, Mainframe Services [email protected] 1830 East Paris, Grand Rapids, MI 49546 MD RSCB1G p 616.653.8429 f 616.653.8497 NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
