This guide helps you to reduce risk and mitigate threats to directory service security.
Understand the threats to directory service security.
Employ secure authentication methods.
Understand and manage certificates and keys.
Secure network connections to directory services.
Store and manage passwords securely.
Encrypt directory data stored on disk.
A guide to securing directory services can go wrong for many reasons, including at least the following:
The author fails to understand or to properly explain the subject.
The reader fails to understand or to act on what is written.
Bugs exist in the directory's security-related features.
The authors of this guide aim to understand directory security features and issues before attempting to explain how to manage them.
The reader would do well to gain grounding in securing services and systems, and in applying and designing processes that prevent or mitigate threats, before reading the guide with a critical eye and a grain of salt. This is not a guide to getting started with security.
ForgeRock Identity Platform™ serves as the basis for our simple and comprehensive Identity and Access Management solution. We help our customers deepen their relationships with their customers, and improve the productivity and connectivity of their employees and partners. For more information about ForgeRock and about the platform, see https://www.forgerock.com.
The ForgeRock Common REST API works across the platform to provide common ways to access web resources and collections of resources.