October 21, 2015

More secure LDAP authentication requires action from application owners

Vanderbilt IT will install a new certificate for LDAP, which is an enterprise service that software applications can use to authenticate users, when the current certificate expires Dec. 5.

Vanderbilt IT will install a new certificate for LDAP, which is an enterprise service that software applications can use to authenticate users, when the current certificate expires Dec. 5.

All application owners whose applications use LDAP will need to contact their vendor or support staff to determine if their applications can support the new standard and schedule updates or upgrades now to allow time for testing and changes. All changes must be in place prior to Dec. 5.

The updated certificate uses a new standard which may be incompatible with some applications. To learn more about this new standard and how it may affect you, please visit https://it.vanderbilt.edu/services/pki/SHA1-deprecation.php.

If you need additional information, please email vuit.identity.operations@vanderbilt.edu, and a member of the identity operations team will assist you. (It is important to note that not all applications requiring a VUnetID and ePassword necessarily authenticate using LDAP. If you are unsure, contact the identity operations team at the address above).