Skill

configuring-ldap-security-hardening

From asi

Harden LDAP directory services against attacks like credential harvesting, LDAP injection, anonymous binding, and channel binding bypass. Covers LDAPS enforcement, signing, ACLs, and monitoring.

security

authentication

npx claudepluginhub plurigrid/asi --plugin asi

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Harden LDAP directory services against common attacks including credential harvesting, LDAP injection, anonymous binding, and channel binding bypass. Covers LDAPS enforcement, channel binding, LDAP signing, access control lists, and monitoring for LDAP-based attacks.

SKILL.md

Similar Skills

configuring-ldap-security-hardening

5.9k

Hardens LDAP services against credential harvesting, injection, anonymous binding, and channel binding bypass. Covers LDAPS enforcement, signing, ACLs, and monitoring for IAM security.

3 files

cybersecurity-skills

configuring-ldap-security-hardening

Hardens LDAP directory services against attacks like credential collection, LDAP injection, anonymous binding, and channel binding bypass. Covers LDAPS enforcement, signing, ACLs, and monitoring.

3 files

cybersecurity-skills-zh

kanidm-expert

Provides expertise in Kanidm identity management for user/group operations, OAuth2/OIDC, LDAP, RADIUS, SSH keys, WebAuthn, MFA, secure auth flows, credential policies, access control, and integrations. Useful for SSO, authentication, and infrastructure security.

2 files

martinholovsky-claude-skills-generator

Stats

Parent Repo Stars16

Parent Repo Forks5

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Configuring LDAP Security Hardening

Overview

When to Use

When deploying or configuring configuring ldap security hardening capabilities in your environment

When establishing security controls aligned to compliance requirements

When building or improving security architecture for this domain

When conducting security assessments that require this implementation

Prerequisites

Familiarity with identity access management concepts and tools

Access to a test or lab environment for safe execution

Python 3.8+ with required dependencies installed

Appropriate authorization for any testing activities

Objectives

Implement comprehensive configuring ldap security hardening capability

Establish automated discovery and monitoring processes

Integrate with enterprise IAM and security tools

Generate compliance-ready documentation and reports

Align with NIST 800-53 access control requirements

Security Controls

Control

NIST 800-53

Description

Account Management

AC-2

Lifecycle management

Access Enforcement

AC-3

Policy-based access control

Least Privilege

AC-6

Minimum necessary permissions

Audit Logging

AU-3

Authentication and access events

Identification

IA-2

User and service identification

Verification

Implementation tested in non-production environment

Security policies configured and enforced

Audit logging enabled and forwarding to SIEM

Documentation and runbooks complete

Compliance evidence generated