Users connected through ASA 5510 VPN remote access configured with LDAP.
When they connect to AD, user and password appear clear on the internal Sniffer.
Try to resolve this with:
1. Ldap over SSL configured on the ASA side
2. LDap over SSL in active directory:
http://www.christowles.com/2010/11/enable-ldap-over-ssl-ldaps-on-windows.html
Test LDAP SSL:
To confirm that LDAP over SSL is configured successfully
Open the Ldp snap-in.
To open Ldp, click Start. In Start Search, type ldp. Right-click the Ldp icon on the Start menu, and then click Run as administrator.
If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Yes.
Click the Ldp Connection menu, and then click Connect.
In Server, type the host name of the server to which you want to connect. Ensure that Port is set to 636, the Connectionless check box is cleared, and the SSL check box is selected, and then click OK.
If you receive a message that says “Cannot open connection,” LDAP-over-SSL binding is not configured properly.
Click the Connection menu, click Bind, and then click OK.
The command output should display the user name and domain name that you used for binding, if LDAP over SSL is configured properly.
