TANGLAD
asked on
Google Apps Directory Sync LDAP port 389
I'm configuring Google Apps Directory Sync and forward port 389 to my Active Directory server.
It works. But is this a security risk?
If yes, what are the steps/requirements for using LDAP+SSL for the connection?
It works. But is this a security risk?
If yes, what are the steps/requirements for using LDAP+SSL for the connection?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
how do you mean you have forwarded port 389 on the dc.
all you need to do is set it as attached image, changing your base DN and authorised user
I can't see any security risk as it is done locally (so no network sniffing), and port 389 is open anyhow
Untitled.png
all you need to do is set it as attached image, changing your base DN and authorised user
I can't see any security risk as it is done locally (so no network sniffing), and port 389 is open anyhow
Untitled.png
ASKER
I did the forward in the firewall
Don't do that, there is no need. That is a security risk
The directory sync reads the LDAP details locally and then uploads the information to Google/Postini through HTTP/S
The directory sync reads the LDAP details locally and then uploads the information to Google/Postini through HTTP/S
ASKER
Great. Thanks
ASKER
Is that a risk?