Case Studies

Shared Services Canada Microsoft MySQL and LDAP Analysis

CLIENT

Shared Services Canada

ASSESSMENT

MSFT MySQL & LDAP Analysis

ENVIRONMET

Unix, MYSQL & LDAP Analysis

OUTCOME

Security & Modernization Roadmap

ON THIS PAGE

Overview

The Challenge

Our Approach

Results

Why it Matters

Environment

Related Services

Project Overview

This Shared Services Canada Microsoft MySQL LDAP Analysis case study reviews CORE Migration’s assessment of the Managed Secure File Transfer environment, including authentication tokens, database structures, LDAP repositories, connection methods, stored data, and security risks.

Shared Services Canada Microsoft MySQL and LDAP Analysis

 

In early 2021, Shared Services Canada (SSC) tasked Core Migration with analyzing the Managed Secure File Transfer (MSFT) system.
The project focused on understanding how MySQL and LDAP were being used within the MSFT business application, identifying authentication tokens,
and documenting connection methods, stored data, and security risks.

Core conducted its analysis on a cloned MSFT Unix web server, allowing a full review of system artifacts without impacting production.
The assessment documented file structures, databases, LDAP repositories, user credentials, and provided recommendations for strengthening MSFT’s architecture and operations.

⚠ The Challenge

SSC faced significant challenges with its MSFT environment:

Password Security Issues

Usernames and passwords were often stored in clear text within property/configuration files and sometimes hardcoded in source code.

Obsolete Server Environment

Legacy Unix-based deployment with scattered artifacts and no clear repository of MSFT server components.

Limited Visibility

Difficulty tracing business rules and runtime processes across MySQL databases, LDAP repositories, and MSFT applications.

Operational Risks

Absence of expected server programs (SftServer, SftRouter, BIC) raised concerns about completeness of deployment.

Undocumented Applications

Discovery of a previously unknown SFT LDAP Administration web application written in HTML, JavaScript, PHP, and Perl.

These challenges created security vulnerabilities, integration difficulties, and gaps in operational control.

Our Approach

Core Migration applied a structured system analysis methodology to document and understand MSFT’s technical environment.

File System Analysis

Scanned the cloned Unix server, identifying over 294,000 files including source code, config files, and authentication tokens.

LDAP Administration Discovery

Identified a new web application that manages LDAP entries, not included in the original MSFT gold code.

Database Analysis

Documented MySQL databases and schemas, detailing tables, user credentials, and application linkages.

LDAP Repository Analysis

Scanned the cloned Unix server, identifying over 294,000 files including source code, config files, and authentication tokens.

Authentication Token Documentation

Extracted usernames, tokens, and methods of connecting to MySQL and LDAP systems.

Security Testing

Outlined procedures for resetting MySQL and LDAP admin passwords.

Business Rule Tracing

Analyzed how runtime data in LDAP and MySQL connects to MSFT processes such as file transfers, reporting, and client management.

Results

The analysis provided SSC with a comprehensive understanding of its MSFT system and uncovered critical findings:

Improved Visibility

Full documentation of databases, LDAP repositories, and file structures.

Security Risks Identified

Exposed clear-text passwords and hardcoded authentication tokens.

Operational Insight

Clarified how runtime data drives file routing, reporting, and LDAP administration.

Extended Architecture Knowledge

Discovered undocumented applications and runtime data dependencies.

Practical Connection Guidance

Documented commands for connecting to and managing MySQL and LDAP environments.

Actionable Roadmap

Provided recommendations for credential management, application documentation, and future analysis.

Why It Matters

Key Benefits

  • Improved visibility
  • Security risks identified
  • Operational insight

Long-Term Impact

  • Extended architecture knowledge
  • Practical connection guidance
  • Actionable modernization roadmap

The Shared Services Canada Microsoft MySQL and LDAP Analysis helped uncover security risks, operational dependencies, and modernization opportunities.

Environment

Legacy Components

Unix Server Hosting

  • MySQL databases
  • LDAP repository
  • PHP/Perl Scripts
  • MSFT application artifacts

Databases

SftpReportAdmin

  • Primary reporting database
  • Mutiple schemas

sft_ftp

  • File transfer support database

LDAP Repository

  • 18,000+ entries
  • Authentication management
  • Business Rules
  • Runtime file transfer logic

Applications

  • SftServer
  • SftRouter
  • BIC
  • SFT LDAP Admninistration

Tools Used

  • File System Analysis
  • SQL queries
  • LDAP search commands
  • Repository extraction

The Shared Services Canada Microsoft MySQL and LDAP Analysis reviewed databases, LDAP repositories, applications, and supporting infrastructure.

Related Services

Business Rules Extraction

Capture and document official business rules to preserve insitutional knowledge

LEARN MORE

Data Conversion Services

Ensure accurate, reliable data migration in modern platforms with minimal risk 

LEARN MORE

Cloud & New Application Development

Build modern, scalable solutions in the cloud to drive your business forward

LEARN MORE

The CORE Migration Method

Our proven methodology for successful legacy application modernization   

LEARN MORE

Ready to Modernize Legacy Applications?

Learn how CORE Migration can help modernize your legacy systems while preserving business logic and maintaing operational continuity.

Contact Us
Scroll to Top