Looking to see if there is any noted documentation that details the security measures that are in place with ClearOS Business edition. I need as detailed of information as possible to provide support to the effect of LDAP security (ports, protocols) and level of encryption for the database and WinBind features. I am not using OpenVPN and I know my RADIUS configuration is using MSCHAP v2 with hashed passwords. Any other questions, please feel free to ask. I know this verges on a vague request.
Share this post:
Accepted AnswerNick HowittOfflineBy default LDAP listens to localhost on port 389 and that is it. If you change Webconfig > Server > Directory > Directory Server > Publish Policy to Local Network or All Networks, then it listens on the relevant interfaces on the LDAPS port 636 where it uses a self-signed certificate. LDAP is accessed by password which you can see in /var/clearos/openldap/config.php.
I've no idea what encryption it uses and I can't help with WinBind.