Enterprise Directory Hardening

+ Investors

+ Careers

+ News & Events

+ Contact

Services: Product Engineering; Security Consulting; Host Assessment and Network Penetration Testing; IT Governance, Risk and Compliance (GRC) Practice; SaaS Security Assessment; Enterprise Directory Hardening; Web Application Vulnerability Assessment; Identity Management Professional services
Solutions and Accelerators: CA Siteminder to Oracle Migration

Enterprise Directory Hardening

Directory servers have, by and large, become the de facto authentication store for large enterprises. In most enterprises, all internal applications interface with the Lightweight Directory Access Protocol (LDAP) store for user authentication and there is a need to ensure secure setup and access for the LDAP store.

According to the CERT® Advisory CA-2001-18, several implementations of the LDAP protocol contain vulnerabilities that may allow DoS attacks, unauthorized privileged access, or both. These vulnerabilities can be exploited by remote attackers to crash the service or execute code via a specially crafted LDAP request to an affected LDAP server.

Persistent’s offering for LDAP server hardening is based on its rich experience and expertise in building and deploying LDAP-based products. We have experience working with the major directory server products like Microsoft Active Directory, Oracle Internet Directory, Sun Directory Server, IBM Directory Server, Novell Directory Server, etc. Our expertise spans Security, Data Infrastructure management and Enterprise Directory consolidation.

The server is tested for vulnerabilities and security flaws in the following areas:

This offering helps enterprises focus on building and deploying their internal applications without worrying over the security of their authentication stores.