WSO2 joining open-source SOA registry field Feb 9, 2008
A single model of dependency chains, helping organizations understand the implications of changing a service * Deployment in any Java servlet container, such as JBoss or Apache Tomcat * Configurable security, including the ability to work with existing LDAP or Acegi directories. Resource/collection versioning for browsing previous versions of resources or collections * Links to workflow systems or Web applications to integrate with governance and management processes * Searchable audit logs and... (InfoWorld)
Malware Now Hiding As Google Toolbar Buttons Dec 24, 2007
LDAP injection is the technique of exploiting Web applications that use client-supplied data in LDAP statements without first stripping potentially harmful characters from the request. The objective of this paper is to inform developers, system administrators and security professionals about various techniques that could be used to attack their applications. (SmallBusinessComputing)
SpringSource Train Chugs Along Dec 21, 2007
Net, Spring LDAP (Lightweight Directory Access Protocol), and Spring Rich Client. It is not clear how many of those projects will be updated on time for release with the March release train, but SpringSource is hard at work on the technology. (eWeek)
IBM releases simplified Tivoli Identity Manager Dec 13, 2007
A virtual directory takes employee and policy data, often stored in multiple directories and accessible by a Web service and simplifies the communication between applications by making it appear to be a plain LDAP server ... A virtual directory takes employee and policy data, often stored in multiple directories and accessible by a Web service and simplifies the communication between applications by making it appear to be a plain LDAP server. (Search Security, MA)
No more furrowed browsers Nov 27, 2007
Anti-spam policies can be customised at the global, group and end-user levels with full integration to LDAP or Active Directory. An end-user digest and web-based quarantine gives users control over their spam preferences. (Sydney Morning Herald -- Technology)
Major Enhancements to eTouch SamePage Enterprise Wiki Make it Easier to Transform an Old Wiki into a SamePage Wiki Nov 20, 2007
It's scalable and reliable to meet the evolving demands of the organization, and rapidly integrates with existing enterprise infrastructure, leveraging built-in LDAP adapters and SSO support. Wiki: A shared virtual white board. (Yahoo News -- Press Releases)
Analysis: Sayonara Netinfo Nov 17, 2007
Its biggest problem was that the rest of the world turned to LDAP for doing the same thing ... To work with various Directory Service caches, including LDAP and DNS, you use dscacheutil. (MacCentral)
Avaya Gives iPhone an Enterprise Extension Nov 13, 2007
Through integration with corporate directories via the Lightweight Directory Access Protocol () (LDAP) on the server, the software gives mobile users detailed information on who has called and who has left voice messages. And it allows them to set policies on how to handle calls from specific sets of people. (CIO Information Network)
University takes identity management to new heights Nov 13, 2007
In addition, Oracle Identity Manager supports provisioning to multiple vendors' LDAP directories, including Microsoft Active Directory and Novell eDirectory ... In addition, Oracle Identity Manager supports provisioning to multiple vendors' LDAP directories, including Microsoft Active Directory and Novell eDirectory. (SearchOracle.com)
Does Active Directory top Linux authentication options? Oct 29, 2007
LDAP or Kerberos: For the experts For IT shops that are comfortable with standard network authentication protocols, a logical choice may be Kerberos or the Lightweight Directory Access Protocol (LDAP), but they're not for everyone, Enck said ... Alternately, some shops opt to use LDAP, but it presents its own set of issues in heterogeneous environments ... "If you want to set up a separate directory like LDAP in Linux, you can use a syncing technology like a management information system MIS and... (Search Enterprise Linux)
Juniper Redefines Network Access Control Oct 9, 2007
Using UAC for application access is not intended to compete against Microsoft Active Directory or other LDAP () access technologies. Krishna sees UAC as being very complementary in that it provides an additional level of visibility and granular user control. (eSecurityPlanet)
Axeda Secures Data Center Access Oct 6, 2007
Authentication and authorization can be based on RADIUS, LDAP or Microsoft's Active Directory. It also uses a patented technology to create a secure link between the external vendor and an internal endpoint within the customer's network without requiring changes to the customer's IT security policies. (eWeek)
Complex password compliance requirements made simple Oct 5, 2007
If you're using Active Directory and LDAP, the tools you need are already at hand ... Even if you're using some other front-end access management product, like IBM Tivoli, Citrix or Sun Microsystems' Java System Identity Manager, the directory server on the back end is still probably Active Directory, LDAP or both ... With LDAP, it's possible to set a minimum password length, minimum number of alphabetic and numeric characters, number of repeat characters and the number of characters which must... (Search Security, MA)
Microsoft shop seeks help with multiplying Linux boxes Oct 4, 2007
Most metadirectory deployments, for example, synchronize data into one or more Lightweight Directory Access Protocol (LDAP) directory servers to ensure that an LDAP application like single sign-on has access to data ... Most metadirectory deployments, for example, synchronize data into one or more Lightweight Directory Access Protocol (LDAP) directory servers to ensure that an LDAP application like single sign-on has access to data. (Search Enterprise Linux)
IT Has Better Things To Do Oct 4, 2007
Many organizations have an LDAP directory in place, and there is no reason users should need a separate password for their operating system and the content management system. Using their OS password through LDAP, users should be able to log in to the content management system as well ... In addition, site privileges, such as content editing and viewing rights, should be able to be integrated with existing LDAP groups, eliminating the need for IT staff to reinvent the wheel by repeatedly creating... (IntranetJournal)
Russinovich finds his place at Microsoft Oct 2, 2007
One is Insight for Active Directory, a tool for monitoring client-side LDAP traffic ... One is Insight for Active Directory, a tool for monitoring client-side LDAP traffic. (SearchWindows2000.com)
Symark joins crowded cross-platform management field Sep 25, 2007
Active Directory (AD) is an implementation of LDAP directory services by Microsoft for use primarily in Windows environments ... Active Directory (AD) is an implementation of LDAP directory services by Microsoft for use primarily in Windows environments. (Search Enterprise Linux)
Microsoft Endgame Sep 21, 2007
like how Active Directory came before Kerberos, LDAP, DNS, NIS, Netware 4. x. (Red Herring)
Ubuntu tries to squeeze out an edge with JeOS Sep 19, 2007
The subtractions include the open source database ; the , or CUPS; email, as well as LDAP functionality ... The subtractions include the open source database ; the , or CUPS; email, as well as LDAP functionality. (Search Enterprise Linux)
RHEL 5.1 tweaks virtualization, interoperability Sep 11, 2007
1 will also see Windows interoperability improvements in the areas of Active Directory support, Kerberos authentication and Lightweight Directory Access Protocol (LDAP), and the latest version of the open source file and print server application (version 3 ... 1 will also see Windows interoperability improvements in the areas of Active Directory support, Kerberos authentication and Lightweight Directory Access Protocol (LDAP), and the latest version of the open source file and print server... (Search Enterprise Linux)
Swan Island Networks Announces New Technology, New Partners and New Managed Service Model for Enterprise Risk Management (ERM) Sep 4, 2007
Ongoing Compliance Management enterprise-class tool, Online customizable questionnaires/surveys, fact-based, workflow, 45+ Reports, Flexible scoring, Ldap Auth. Remediation Tracking. (Yahoo News -- Press Releases)
Tip: From Windows to Linux: Finding comparable apps and services Aug 21, 2007
The first, directory information, is done through an implementation of LDAP, such as OpenLDAP. The second, authentication, is done through a mechanism like Kerberos ... e., to talk to Novell eDirectory, you can use an LDAP call of some kind) ... The most "generic" implementation of LDAP in Linux is probably OpenLDAP, but it has some limitations; mainly, it can only support one master catalog server at a time in any given domain. (Search Enterprise Linux)
Six Apart Releases Movable Type 4 Aug 16, 2007
" Indeed, Six Apart has won fans among businesses that blog and its upcoming Movable Type Enterprise Solution, with support for LDAP and Oracle 10g, will likely be welcomed by paying enterprise customers if not fans of free code. That said, WordPress is making headway among corporate customers, too. The larger question is whether winning business customers will matter more in coming years than winning the hearts and minds of individual bloggers. It may be that in a few years, few individuals... (Yahoo News -- Technology)
Microsoft gears up for nine patches next week Aug 12, 2007
" Rabbits, white rabbits on Wednesday's IT Blogwatch: in which Microsoft "embraces" open source licensing. Not to mention how NASA..." " Here's an interesting idea - as an alternative to running multiple LDAP servers for your Linux authentication, why not just..." or. Where can you earn top dollar, get the best benefits, the latest IT and more. (Computerworld)
Red Hat Global Desktop delayed Aug 6, 2007
Another likely result of this deal for the desktop will be improved interoperability between Red Hat's Global Desktop LDAP and Windows Server's AD (Active Directory). In Red Hat's statement, Day explained that the Global Desktop is designed for small business and local government agency users around the world. (Desktop Linux)
Auto loan SOA using XML processing and ESB hardware Aug 2, 2007
"It has all the features that an ESB should have. It's capable of routing and transforming, and validating data. It's capable of talking to a variety of things. It talks to LDAP servers, SQL databases. It can talk to any basic SOA or Web services applications." ... "It has all the features that an ESB should have. It's capable of routing and transforming, and validating data. It's capable of talking to a variety of things. It talks to LDAP servers, SQL databases. It can talk to any basic SOA or... (Search Webservices)
Linux authentication troubles? Try Active Directory Jul 27, 2007
Most metadirectory deployments synchronize data into at least one Lightweight Directory Access Protocol (LDAP) directory server to ensure that an LDAP application like single sign-on has access to recent data. System administrators can also create special LDAP directories for their Linux and Unix boxes ... But many analysts say AD, Microsoft's implementation of LDAP directory services for central authentication and authorization services in Windows environments, is the answer. (Search Enterprise Linux)
Using an XML security gateway in a service-oriented architecture Jul 18, 2007
So a given transaction is likely to span multiple identity domains (like Active Directory, LDAP, and RACF). The XML security gateway can provide a central point to deploy the necessary identity mapping. (Search Security, MA)
The Authenex Strong Authentication System (ASAS) Gives Administrators a Break, by Enabling Users to Perform Routine Token Management Tasks. Jul 17, 2007
csv file to the ASAS(R) Database (or pulls the data directly into the database via LDAP), then sends out new tokens to users. The users then access the ASAS(R) Self Service Center, initialize their tokens and they are ready to go. (PR Newswire)
Update: Dueling analysts bicker over nano iPhone chances Jul 13, 2007
Fairway Consulting Group provides a painless way to have one password that provides central user management for all of your ESX servers using LDAP as well as Kerberos Authentication. Securing the Enterprise Infrastructure from Wireless Threats. (Computerworld)
MS patches Active Directory flaw Jul 11, 2007
The flaw deals with the way Active Directory processes LDAP client requests. Attackers could create a malicious LDAP request that would then allow them to "take complete control of an affected system," Microsoft warned in its advisory on the flaw ... Active Directory enables LDAP by default, but there are factors that mitigate a possible attack. (InfoWorld)
One patch for Active Directory is a doozy Jul 11, 2007
Someone that has access to AD as an authenticated user could in theory craft an LDAP request that could bring Active Directory to its knees -- either by running an arbitrary payload or by just instigating a denial-of-service attack ... Microsoft does recommend only allowing authorized hosts to perform LDAP queries as an additional layer of safety ... Someone that has access to AD as an authenticated user could in theory craft an LDAP request that could bring Active Directory to its knees --... (SearchWindows2000.com)
JBoss portal gets Google Gadgets Jul 3, 2007
Prebuilt LDAP integration is featured with servers supported, including Red Hat Director Server, OpenDS, and OpenLDAP. JBoss Portal 2. 6 also features integration with the Ajax4jsf and RichFaces development frameworks. (InfoWorld)
Review: Find sensitive content, fast Jun 27, 2007
Because you can specify systems by name, IP address range, or LDAP groups, large deployments should go smoothly. Similarly, Content Sentinel's options are straightforward. (InfoWorld)
Linux security help: Nagios with BMC Patrol, setting up ... Jun 26, 2007
You will want to make certain that appropriate access control lists (ACLs) are configured in Squid to ensure that only your users can make use of your proxy and, preferably, that users must authenticate against a directory such as LDAP with a username and password. When using Red Hat Enterprise Linux 5 (RHEL 5), how can you monitor which ports are open on different servers to make sure someone hasn't compromised ports for other uses. (Search Enterprise Linux)
Apache vs. Lighttpd Jun 23, 2007
By Eric Spiegel - Published January 4, 2007 Using teamwork and incentives, the financial services firm averted serious problems within its support environment. By Mike Elgan - Published May 30, 2007 Want your own personal computing Renaissance. (Datamation)
Opinion: Analysts miss the point on the iPhone Jun 22, 2007
It can, however, hook up to IMAP e-mail, LDAP address books and WebDav for calendaring; with a bit of tweaking that will work well for Exchange-based companies. Microsoft SharePoint can also be browsed from the Web interface, but to what extent. (MacCentral)
CA Stakes Another Mainframe Security Claim Jun 20, 2007
Both products now include integration with the Security Management Architecture, as well as improved support for LDAP Directory Service, including recovery processing and the capability to send installation data. Check out eWEEK.com's for the latest security news, reviews and analysis. (eWeek)
A Fresh Breath For Event Processing Jun 20, 2007
0, due before Sept. 30, also includes network data encryption, user authentication through integration with LDAP servers and role-based authorization. This article was first published on. (Datamation)
Homegrown App Structure Tracked Jun 13, 2007
"The discovery data tools take a manual, labor-intensive approach to creating fingerprints of custom applications . The discovery guys claim they can do it, but we're talking about building a custom application's persona in three days, versus six weeks to understand the application infrastructure, building the first fingerprint and then being able to run it, said Guinta. "Then with the competing approach they have to come in again every time you want to change it," she added. Managed Objects'... (eWeek)
Apple gives developers some iPhone access Jun 13, 2007
For his demo, Forstall showed an Apple Directory application the company wrote for the iPhone that taps into an internal LDAP database. Developers don t have much time before the phone s debut to create these applications the iPhone ships June 29. (MacCentral)
WWDC Keynote Summary Posted Jun 12, 2007
Forstall brings up a custom application - a corporate address book database that uses LDAP.. Performs a search for various names. (O'Grady's Power Page)
Best practices for compliance during a merger Jun 7, 2007
Are they both on Active Directory, or is one using LDAP while the other uses something else. What's the current state of audits of accounts at both companies. (Search Security, MA)
Simple polling with LimeSurvey Jun 6, 2007
To take advantage of LimeSurvey's token system, you need to have the LDAP Library installed in PHP. The script itself takes up about 10MB of disk space. Installing LimeSurvey just requires uploading the survey software to a directory of your choice, editing the project's config. (Linux.com)
Identity management and single sign-on (SSO) Jun 5, 2007
Let's get back to LDAP for a minute. What is important to remember is that LDAP is not really an authentication protocol ... Some versions of LDAP, such as IBM Tivoli Directory Server, allow one to choose your authentication strategy; you can use either a simple user ID and password authentication or the more secure digital certificate-based authentication structure. (Search Enterprise Linux)
Review: Clearspace X collaborates Jun 1, 2007
For large communities, server clustering supports high-traffic sites, while LDAP and Active Directory integration speeds setup and maintenance. And the open architecture makes deployment on commodity hardware simple. (InfoWorld)
Take a hard look at your disaster recovery plan May 31, 2007
Don't forget to ask your team members if they have offsite backups of the miscellaneous tools they use, such as custom LDAP search scripts, VB scripts and PowerShell scripts for Windows Server 2008 and Exchange 2007. Verbal walkthrough. (SearchWindows2000.com)
Using common Linux mail clients with an Exchange Server May 30, 2007
You can send and receive mail as per a POP3 mailbox, and you can poll the Exchange Global Address List as if it were an LDAP address book, but it's not the best way to work. The better way to do this is to have Thunderbird talk to Exchange as an IMAP client. (Search Enterprise Linux)
Microsoft crosses signals on open source May 24, 2007
This week company said it would link its Active Directory with the OpenLDAP Directory, which is an open source implementation of the Lightweight Directory Access Protocol (LDAP) ... "I suppose if you're a Novell customer using SUSE Linux and OpenLDAP or Novell's directory, you might feel safe," said Goulde, referring to ... Patent protests aside, IT shops may soon have a means to tie together identities, permissions and rights managed in disparate Active Directory and OpenLDAP Directory systems.... (SearchWindows2000.com)
Red Hat won't shift virtualization, RHEL5 plans May 18, 2007
There are good open standards in LDAP today ... There are good open standards in LDAP today. (Search Enterprise Linux)
Shimon Charts New Security Path May 11, 2007
As a RADIUS server, the Bio-NetGuard has its limitations that some companies may expect from better-known RADIUS solutions, such as software from Juniper Networks or FreeRADIUS. For example, administrators must use the built-in user database as there are no tie-ins with back-end LDAP or Active Directories to leverage existing user credentials. We also could not figure out a simple way to import users into the system via a text file or other method. (eWeek)
MS to kick Vista's e-mail to curb May 9, 2007
A redesigned interface supports Vista's Aero look and feel -- the first Windows Live offering to do so -- and the program adds S/MIME and LDAP support. It will be advertisement-free. (InfoWorld)
Employee profiling: A proactive defense against insider threats: May 4, 2007
Active Directory for Windows and LDAP for Unix systems both allow groups to be created with restricted access based on role and risk level. And, of course, as soon as an employee either leaves or is terminated, cut off his or her access as soon as he or she is out the door, if not sooner. (Search Security, MA)
Computerworld: Understanding Mac OS X Open Directory Apr 21, 2007
As Mac OS X Server evolved, Apple replaced NetInfo with a service based on the Lightweight Directory Access Protocol (LDAP) that is often referred to as simply Open Directory ... For instance, the LDAP v3 plug-in manages Open Directory domain configuration and binding ... You can also use the Contacts tab to set up LDAP search paths of domains for Mac OS X s Address Book application. (MacCentral)
Review: Juniper boosts Web sites Apr 7, 2007
In addition, the DX3680 shields applications running on Web servers from Internet-based attacks, preventing hackers from issuing unauthorized commands or taking advantage of known bugs in the Web server software, and it can handle user authentication via RADIUS or LDAP.. Cluster call. (InfoWorld)
Computerworld: Mac administration in a Windows world Mar 30, 2007
Another major limitation is that Apple s Active Directory solution uses LDAP rather than Microsoft s ADSI protocol when authenticating users, and it doesn t support signed LDAP communication. This means that you must lower the domain security policy for Windows 2003 Server to support Mac clients, which can expose an Active Directory domain to increased risk of network attacks. (MacCentral)
IBM Plugs Security Holes in Domino Mar 29, 2007
If a hacker were to exploit the vulnerability in the directory service (LDAP) component of IBM's Lotus Domino Server 7 ... "When a malformed request is made to the LDAP component of a Lotus Domino Enterprise Server, a heap overflow can be triggered," according to a security alert posted by "The vulnerability specifically exists in the handling of strings larger than 65,535 bytes. When a string longer than this value is encountered, the service allocates memory using only the lower 16 bits of the... (eWeek)
PengYou document collaboration software shows promise Mar 29, 2007
PengYou can use a LDAP server to authenticate users, but, at the moment, there is no documentation on how this can be done. User management and access control features are expected to appear in the next version of PengYou. (Linux.com)
SAMBA (Domaincontroller) Server On Ubuntu 6.10 Mar 28, 2007
writes " about how to set up a Ubuntu based server (Ubuntu 6.10) to act as a file- and printserver for Windows workstations in small workgroups. This howto uses the tdb backend for SAMBA to store passwords and account information. This is suitable for workgroups for up to 250 users and is easier to set up than an LDAP backend.". Related Links. (Linux.com)
Google Mini, The Third Mar 28, 2007
New document-level security support allows the crawler to index data protected by HTTP Basic or NTLM v1/v2 authentication, as well as LDAP. When secure documents are indexed, they will only be accessible in search results to people who present the necessary credentials originally applied to that document. The Mini does not support any additional authentication systems, however. (IntranetJournal)
Identity management without Microsoft restrictions Mar 21, 2007
Adapters will permit directories, collaboration and communication tools like Web Services, LDAP, email and instant messaging to be integrated. The initial stages of the project include the specification of a service-oriented architecture (SOA) model and a Java-based implementation reference model. (Search Enterprise Linux)
Linux pro turns to Active Directory identity management Mar 21, 2007
Brown said RIM looked into Quest Software, but he decided to pass because Vintela required schema changes to AD. "That's not really the best approach because if you have to go to Microsoft with a problem, they're going to tell you 'sorry, you installed extensions to LDAP,'" he said ... Brown said RIM looked into Quest Software, but he decided to pass because Vintela required schema changes to AD. "That's not really the best approach because if you have to go to Microsoft with a problem, they're... (Search Enterprise Linux)
Read more at Linux.com Mar 20, 2007
OF course - by using THUNDERBIRD, you can put address books and calandering into storage in your IMAP server, instead of using LDAP (the ISPs and Domain Hosts don't do LDAP, so this IMAP SyncKolab stuff is your only viable option). USING THIS YOU CAN SWITCH DISTROS in a second. (NewsForge)
Apple patches dozens of dangerous Mac flaws Mar 15, 2007
It allows unprivileged LDAP users to modify the local root password ... It allows unprivileged LDAP users to modify the local root password. (Search Security, MA)
Mac support in an Active Directory environment Mar 15, 2007
Apple's Active Directory plug-in uses LDAP to query Active Directory ... Most notably, ADmitMac fully supports Kerberos under Active Directory as well as signed LDAP and SMB communication and NT LAN Manager, enabling much tighter security with Windows 2003 Server ... Apple's solutions require unsigned LDAP and SMB communication. (MacCentral)
