We describe security vulnerabilities recently discovered in the NGINX LDAP reference implementation, and how to mitigate them. NGINX Open Source and NGINX Plus are not affected, and no corrective action is required if you do not use the reference implementation.
Using NGINX Plus and NGINX to Authenticate Application Users with LDAP
Learn how to use the request_auth module in NGINX Plus & NGINX to direct to an LDP server authentication requests from users accessing protected resources
