Hi, i am considering using ldap authentication on our Moodle server. We run active directory off Windows 2003 server. The active directory is only accessible inside the college. We have externally a Webmail server for Exchange 2003 and our Moodle implemetation.
If i use ldap to make signing on easier to Moodle are there any security risks i need to be aware of? specifically i am worried about users being able to query accounts on moodle using ldap. Am i being paranoid? would someone be able to e.g. guess an admin password by using ldap on Moodle and then cause havoc on my network?
Thanks for any help you can offer.