27fb9a5cfb
Implements: blueprint security-hardening Change-Id: Ia36dc2c5f65b82a5756f2f221cebfb7b6bab1912
9 lines
399 B
ReStructuredText
9 lines
399 B
ReStructuredText
**Exception**
|
|
|
|
Neither Ubuntu 14.04 or openstack-ansible configures LDAP authentication by
|
|
default. Deployers that use LDAP authentication for systems are strongly
|
|
urged to use TLS connectivity between client hosts and LDAP servers to
|
|
prevent eavesdroppers on the network from reading the authentication attempts
|
|
as they are made. The certificates on the LDAP server must be trusted by
|
|
each client.
|