Uploaded image for project: 'ZABBIX FEATURE REQUESTS'
  1. ZABBIX FEATURE REQUESTS
  2. ZBXNEXT-9612

Encryption LDAP bind password

XMLWordPrintable

    • Icon: New Feature Request New Feature Request
    • Resolution: Unresolved
    • Icon: High High
    • None
    • None
    • Frontend (F)
    • None
    • N/A

      During the implementation of Zabbix and the integration of LDAP-based authentication, we encountered a significant security issue. The security policies in our organization mandate encryption of all passwords. However, the current capabilities of Zabbix in terms of LDAP configuration are insufficient, making it impossible to meet these requirements

      Current issues:

      1. The LDAP configuration form does not allow for the encryption of the bind user's password.
      2. There is no option to use user macros, which could be utilized for storing and encrypting passwords.
        The bind user's password is stored in the database in plain text, which poses a serious security risk.
      3. This issue is critical and blocks the further deployment of Zabbix in our infrastructure, as we cannot accept a solution that does not meet security requirements for protecting authentication data.

            vmurzins Valdis Murzins
            marcin.reszka Marcin Reszka
            Votes:
            6 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: