We have been using ntlm2java as authentication method for MS SQL Server DataDirect datasource. But, our security team informed us that ntlm uses password hashing and are not salted, as a result systems become vulnerable to brute force attacks. They are planning to disable ntlm soon on all servers & domain controller. In that case we won't be able to run VA and classification process, as currently ntlm is the only option supported by Guardium 11.3 & above.
The product that is supposed to provide data protection itself should not have security gaps.
Please add Kerberos as AuthenticationMethod for MS SQL Server DataDirect datasource. Please consider this as a urgent enhancement request.
Do not place IBM confidential, company confidential, or personal information into any field.