-
Type:
New Feature
-
Resolution: Unresolved
-
Priority:
Major
-
Component/s: active-directory-plugin
-
None
Instead of simple bind, use SASL to provide some degree of data encryption out of the box.
MSDN lists various mechanisms that AD supports, and it includes DIGEST-MD5, which works with plain text password Jenkins has received from the browser (via the login form.) SASL is supported by JNDI LDAP implementation so activating it should be very simple.
- is related to
-
-
- Resolved
-
-
-
- Closed
-