12.3 Recommended Security Configurations when Using the Simple Authentication Method

SSL is recommended if you have selected the Simple authentication mechanism because Simple authentication passes passwords in clear text.

Table 12-3 Recommended Security Configuration when Using the Simple Authentication Method

Parameter

Description

Authentication ID

The account the driver uses to access the domain data. Use LDAP format for the Authentication ID. For example, cn=IDMadmin,cn=Users,dc=domain,dc=com

Authentication Context

IP address of domain controller.

Password

The password for the specified Authentication ID.

Digitally sign communications

Select No.

Digitally sign and seal communications

Select No.

Use SSL for encryption

Select Yes. SSL requires that the Microsoft server running the driver shim imports the domain controller’s server certificate imported. For more information, see Securing Windows 200 Server.