IBM Security Guardium Ideas Portal


This portal will be removed

In IBM’s effort to continue to streamline and simplify navigation for our customers, this Ideas portal will be shut down on February 28, 2023. We would ask that you use the main IBM Ideas portal at https://ideas.ibm.com/ or the IBM Security-specific portal at https://ibmsecurity.ideas.ibm.com/ to review, vote for existing ideas, or add new ideas.

Support for SASL bind

GKLM uses LDAP simple bind when adding new LDAP user. This is not secure as the password is in clear in the network trace. Sending password in clear should not be the default and at a minimum GKLM should allow to switch to a more secure authentication : SASL bind

  • Guest
  • Oct 5 2022
  • Future consideration
  • Admin
    Shiv Jha commented
    7 Dec, 2022 12:27pm

    Hi Laurent,

    GKLM product utilizes WebSphere Liberty as the underlying application server and is dependent on it to integrate with LDAP servers. Currently Liberty doesn't support SASL bind mechanism and we have created an enhancement request for Liberty team to add support for this capability.

    We truly appreciate the idea and this surely will be a good product enhancement. It will be considered for implementation in future releases as and when Liberty provides support for it.

    Thanks,

    Shiv

    GKLM Release Manager

  • Admin
    Michael Saldarriaga commented
    5 Oct, 2022 04:12pm

    Hi Laurent, thank you for submitting your idea. Our product team will review and respond back with an update or any questions we may have about your idea.

    Thanks,
    Michael Saldarriaga
    Product Manager

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.