Skip to main content

Active Directory Security Issue 2020 R1 106.0005

  • October 22, 2020
  • 1 reply
  • 162 views
P
Freshman I

We install 2020 R1 and ran into a security issue with the release.  

Users did not have to enter passwords to enter the site, also they could enter anyone’s id in the user field and get in as that person.

Acumatica has a suggestion about turning off the “Guest Account” in AD.  They also have produced a Hot Fix for us that we are implementing 106.0010.  

Anyone using Windows AD in 2020 Rx, may want to check out if they have a similar issue.  Then if so get together with your VAR to address it.

    Did this topic help you find an answer to your question?

    1 reply

    M
    Acumatica Moderator
    Forum|alt.badge.img
    • mrysev
    • Acumatica Support Team
    • 13 replies
    • October 22, 2020

    Patrick, you’re right. And here is the article describing this issue:
    https://community.acumatica.com/maintenance-and-troubleshooting-15/known-issue-possible-ldap-authentication-vulnerability-for-private-cloud-deployments-3835

     

    Reply


    Most helpful members this week

    Terms & ConditionsCookie settings

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

     
    Cookie settings
    About Acumatica ERP system
    Acumatica Cloud ERP provides the best business management solution for transforming your company to thrive in the new digital economy. Built on a future-proof platform with open architecture for rapid integrations, scalability, and ease of use, Acumatica delivers unparalleled value to small and midmarket organizations. Connected Business. Delivered.
    © 2008 — 2024  Acumatica, Inc. All rights reserved