We're updating the issue view to help you get more done. 

LDAP Users must no be able to login with AD_User password

Description

As reported at
https://idempiere.atlassian.net/browse/IDEMPIERE-3866?focusedCommentId=43076&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-43076

Using LDAP is allowing users to authenticate also with AD_User.Password, this can be considered a security issue, I think most companies would like to stop login if LDAP fails.

Environment

None

Status

Assignee

Carlos Ruiz

Reporter

Carlos Ruiz

Labels

None

Tested By

None

Priority

Major