2 matches found
Security Bulletin: Security Identity Adapter data traffic to/from server is not encrypted by default
Summary Security Identity Adapter data traffic to/from IGI and ISIM server is not encrypted by default. Adapter installers have been updated to enable SSL by default. The customer can choose during installation to disable SSL. Note that keeping the SSL enablement option requires certificates to b...
CVE-2017-1362
IBM Security Identity Manager Adapters 6.0 and 7.0 store user credentials in plaintext, readable by local users. The IBM bulletin confirms unsecured data traffic when SSL is not explicitly enabled; enabling SSL by default and importing valid certificates is recommended. Affected: ISIM v6.0 Adapte...