Astra Group has released a new version of its proprietary corporate directory service with long-term support (LTS) — ALD Pro 3.2. As part of the LTS approach, security updates will be released for version 3.2 for at least 12 months without changing the architecture, which simplifies the operation of the product in an industrial environment.
The speed of user login to the system has been optimized by reworking the PAM stack, which is especially important for large multi-domain infrastructures. The monitoring subsystem is now capable of monitoring more than 150 hosts in a server group with less load.
Security has been improved by prohibiting LDAP authentication with an expired password and filtering group policies by users and computers. Logging of system account requests has been added, which simplifies incident investigation. The product includes 25 group policy parameters for security and audit management according to the recommendations of the FSTEC of Russia.
Migration functionality has been simplified: the functions of the graphical domain join utility are built into the standard aldpro-client-installer application. A prototype utility has been implemented for building reports on the results of applying group policies.
The PKI Proxy service has become extensible through a plugin mechanism, which allows ALD Pro to be integrated with any third-party certification authorities. Now you can use the LDAP service to send requests and receive certificates.