GUIZ49_261118
Jun 25, 2016Nimbostratus
mitigation of brute force attacks using ASM for lync autodiscover
Hi we do use LTM as reverse proxy to publish lync autodiscover service externally. however it cause a security issue as any person can download lync mobile client and cause account lockout after multiple try with worng password. is there any way to protect ntlm authentication during the autodiscover process by using ASM. (we are running lync 2010 in hybrid mode) the below article explain a way to mitigate the risk but did any one used it for Lync ? https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-4-0/21.html
we do profer to use ASM as Irules looks to be complicated