Okta AD/LDAP DelAuthモジュールã«é–¢ã™ã‚‹è„†å¼±æ€§ã“ã‚“ã«ã¡ã¯ã€å¯Œå£«æ¦®ã§ã™ã€‚ Okta社よりAD/LDAP DelAuthモジュールã«é–¢ã™ã‚‹è„†å¼±æ€§ãŒå ±å‘Šã•ã‚Œã¦ã„ã¾ã™ã。 https://trust.okta.com/security-advisories/okta-ad-ldap-delegated-authentication-username/ å ±å‘Šã•ã‚Œã¦ã„る内容ã¨ã—ã¦ã¯ã€AD/LDAP DelAuthモジュールを使ã£ã¦ã„る環境ã§ã€éŽåŽ»ã«ã‚ャッシュãƒã‚°ã‚¤ãƒ³ã«æˆåŠŸã—ãŸã“ã¨ã®ã‚ã‚‹å ´åˆã€ãƒ¦ãƒ¼ã‚¶ãƒ¼åãŒ52æ–‡å—以上ã ã¨ãƒ‘スワードãªã—(ã‚ャッシュã®ã¿ã§ï¼‰ãƒã‚°ã‚¤ãƒ³ãŒæˆåŠŸã—ã¦ã—ã¾ã†ã€ã¨ã„ã†è©±ã§ã™ã€‚ ã“ã¡ã‚‰ä¸Šè¨˜ã®ã‚µã‚¤ãƒˆã‹ã‚‰ã®å¼•ç”¨ã§ã™ã€‚ On October 30, 2024, a vulnerability was internally identified in generating the cache key for AD/LDAP DelAuth.
mTLS: When certificate authentication is done wrong
GitHub - cisagov/log4j-scanner: log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vulnerable web services affected by the log4j vulnerabilities.
us-16-MunozMirosh-A-Journey-From-JNDI-LDAP-Manipulation-To-RCE
Spring Bootã§Webã‚»ã‚ュリティをè¨å®šã—よã†
SAML / OpenID Connect / OAuth / SCIM 技術解説 - ID&IT 2014 #idit2014
Google Cloud Platform Japan å…¬å¼ãƒ–ãƒã‚°: Secure LDAP ã‚’æ£å¼ãƒªãƒªãƒ¼ã‚¹ ―― LDAP アプリã¸ã®ã‚¢ã‚¯ã‚»ã‚¹ãŒ Cloud Identity ã§ç®¡ç†å¯èƒ½ã«
LDAPインジェクションをã—ãŸã‹ã£ãŸè©± - ã¾ã£ãŸã‚ŠæŠ€è¡“ブãƒã‚°
DeleGate Home Page (www.delegate.org)
ActiveDirectoryã¨é€£æºã—よㆠ(1) Google Apps Directory Sync (GADS) – 1 – CLARA ONLINE techblog
知られã–ã‚‹Active Directory技術ã®ã€Œèˆžå°è£ã€ï¼šé€£è¼‰ï½œgihyo.jp … 技術評論社
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚了日を2020å¹´1月31æ—¥(金)ã«æ±ºå®šã—ã¾ã—㟠- ã¯ã¦ãªã®å‘ŠçŸ¥
第4回 Google Appsã¨ã®ã‚¢ã‚¤ãƒ‡ãƒ³ãƒ†ã‚£ãƒ†ã‚£åŸºç›¤é€£æºã‚’実ç¾ã™ã‚‹
OpenLDAP Everywhere Reloaded, Part I | Linux Journal
Welcome to Apache Directory Studio — Apache Directory
連載:ãã‚ãã‚LDAPã«ã—ã¦ã¿ãªã„ã‹ï¼Ÿï½œgihyo.jp … 技術評論社
{{#tags}}- {{label}}
{{/tags}}