If you delegate rights to an AD user, what are the minimum permissions needed?
What directory rights to you set in Apache and on the local file system? Thanks, Peter Peter Klingler Network Analyst Technology Services Lebanon Community School District 485 S. 5th St. Lebanon, OR 97355 [email protected] 541-259-8934 >>> Clément OUDOT<[email protected]> 7/19/2013 9:26 AM >>> 2013/7/19 Peter Klingler <[email protected]>: > What are some steps to secure Self-Service-Password? > > Apache SSL > Directory Rights > Active Directory Manager Permissions (what are the minimum permissions needed)? > > Any other suggestions? Setting HTTPS seems the most interesting thing to do. You can prevent brute force by setting external tools like fail2ban. The AD account must have rights to change password of every users, so you can't really reduce its rights. Clément. _______________________________________________ ltb-users mailing list [email protected] http://lists.ltb-project.org/listinfo/ltb-users
