Automation Controller must utilize encryption when using LDAP for authentication.
An XCCDF Rule
Description
To avoid access with malicious intent, passwords will need to be protected at all times. This includes transmission where passwords must be encrypted for security.
- ID
- SV-256907r961029_rule
- Version
- APAS-AT-000055
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Log in to Automation Controller as an administrator and navigate to Settings >> Authentication >> LDAP settings.
Click "Edit".
Modify the "LDAP SERVER URI" field so that it begins with "ldaps://".
Click "Save".