Hcl on

Troubleshooting IBM WebSphere LDAP Security

christoph.stoettner@stoeps.de (Christoph Stoettner) — Wed, 09 Apr 2025 21:00:00 +0200

Most of the LDAP connections from IBM WebSphere Application Server are configured with TLS. So you need to have the root certificate in the WebSphere truststore to connect.

CVE-2024-23557 - HCL Connections Security Update for User Enumeration Vulnerability

christoph.stoettner@stoeps.de (Christoph Stoettner) — Sun, 21 Apr 2024 17:30:00 +0200

Some time back, I stumbled upon a flaw in HCL Connections 7 and 8 that allowed for user enumeration. This flaw could be exploited by anonymous users.

Troubleshooting Top Updates in HCL Connections

christoph.stoettner@stoeps.de (Christoph Stoettner) — Mon, 04 Dec 2023 14:56:23 +0100

Last week, I had three systems with issues displaying the Top Updates in the Orient Me. So I tried to find out which applications and containers are involved in generating the content for this view.

Hide widget from Highlights

christoph.stoettner@stoeps.de (Christoph Stoettner) — Wed, 29 Nov 2023 16:28:15 +0100

With HCL Connections 6.5 and later, we got the add-on HCL Connections Engagement Center (aka CEC, HCEC, ICEC or XCC) included in a normal HCL Connections deployment.

Security Directory Integrator connecting to Active Directory LDAPS

christoph.stoettner@stoeps.de (Christoph Stoettner) — Thu, 02 Nov 2023 14:41:15 +0100

I had one Connections’ environment that I wanted to switch from OpenLDAP to Active Directory LDAP. The old OpenLDAP environment used LDAPS to connect, and so I assumed that the change was done quickly.

The first step was to make a copy of the tdisol folder I used for OpenLDAP and start changing the configuration files for the new LDAP server.