All Topics » Pulse Connect Secure



Configuring Authentication with an LDAP Server


Victor2017
Contributor (0)
Aug 3, 2017 1:38am
Hi all,

What will be the security risks if I set the connection to unencrypted?

With reference from https://docs.pulsesecure.net/WebHelp/Content/PCS/PCS_AdminGuide_8.2/Configuring%20Authentication_4.htm, it stated that the device sends the username and password to the LDAP Directory Service in cleartext.

Am I right to say that the login credentials of user will be passed in clear text from pulse client to LDAP ?

Thank you in advance



zanyterp
Pulse Secure Contributor (40)
Aug 5, 2017 1:34am
depends on what you mean by "pulse client"
if you mean the client software installed on the endpoint system, no, it is not in cleartext. it is encrypted using SSL; the PCS then forwards that, on the backend, using cleartext
if you mean the PCS server/appliance, yes