Advertisement

03.31.2008 at 06:52AM PDT, ID: 23282449
[x]
Attachment Details

Is Active Directory port 389 secure enough to talk to Cold Fusion?

Asked by exhudson in ColdFusion Application Server, Active Directory, Cold Fusion Markup Language

Tags: , , , , ,

I am currently (in development, not production) using a page that makes a CFLDAP call to our AD server.  I know that the secure port on AD is not on (any calls to the standard secure port are rejected), and no certificates have been installed on the CF server.

I need to ensure the powers that be that login/pass info sent from my CF page is secure when it makes the cfldap call. IThe CF server and the AD machine are not on the same subnet, so that is out. If it is not secure enough, What does one do to ensure this security?

I am kind of doing the AD guys work for them. They are clueless on if AD had a secure port at all.
I know how to make the CFLDAP calls, I just need to know about security. Code is atttached.

Thanks much for any help. Start Free Trial 
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:

<cfldap action="query" 
           server="dc001...." 
		   port=389
	
           name="Results" 
           start="DC=something,"
           filter="(&(objectclass=user)(SamAccountName=#form.user#))"
           username="#form.user#@blah.net" 
           password="#form.pass#" 
           attributes = "cn,o,l,st,sn,c,mail,telephonenumber, givenname,homephone, streetaddress, postalcode, SamAccountname, physicalDeliveryOfficeName, department, organization, employeeID, password">
[+][-]03.31.2008 at 08:17AM PDT, ID: 21246146

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.31.2008 at 09:33AM PDT, ID: 21246913

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.07.2008 at 07:38AM PDT, ID: 21297315

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.23.2008 at 06:29AM PDT, ID: 21420431

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: ColdFusion Application Server, Active Directory, Cold Fusion Markup Language
Tags: Microsoft, Adobe, Active Directory, Cold Fusion, MX7, using default port 389, Cold Fusion, IE
Sign Up Now!
Solution Provided By: exhudson
Participating Experts: 1
Solution Grade: A
 
 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628