Ars Technica

AnyConnect with LDAP Authentication

I'm bringing up a new A/S Pair of ASA 5515's for our VPN users. They're running ASA 9.3(2) with ASDM 7.4(2). We want to use LDAP authentication for AD auth and then evetually implement Duo for 2FA.
CNET

LDAP flaw in OS X Lion opens major authentication security hole

A new security hole has been found in OS X Lion where usernames can be authenticated without providing a password on systems bound to LDAP servers. Topher Kessler MacFixIt Editor Topher, an avid Mac ...
GIGAZINE

Okta announces that a flaw that allowed users to log in without a password if their username was 52 characters or longer had existed for three months

Okta, which operates a system that centrally manages user accounts such as IDs and passwords, has announced that a vulnerability that allows users to bypass password authentication if their username ...