Thread: ldapbindpasswd parameter value encrypted

ldapbindpasswd parameter value encrypted

From

PG Doc comments form

Date:

02 November 2021, 14:11:45

The following documentation comment has been logged on the website:

Page: https://www.postgresql.org/docs/12/auth-ldap.html
Description:

Hello team,
may you please explain if there is a way to store in pg_hba.conf file the
value of parameter ldapbindpasswd crypted in some way?
Thanks

Re: ldapbindpasswd parameter value encrypted

From

Bruce Momjian

Date:

03 November 2021, 00:37:12

On Tue, Nov  2, 2021 at 02:11:45PM +0000, PG Doc comments form wrote:
> The following documentation comment has been logged on the website:
> 
> Page: https://www.postgresql.org/docs/12/auth-ldap.html
> Description:
> 
> Hello team,
> may you please explain if there is a way to store in pg_hba.conf file the
> value of parameter ldapbindpasswd crypted in some way?

No, not really.  This has a problem similar to encrypting pgpass, which
I described here:

    https://momjian.us/main/blogs/pgblog/2021.html#May_28_2021
-- 
  Bruce Momjian  <bruce@momjian.us>        https://momjian.us
  EDB                                      https://enterprisedb.com

  If only the physical world exists, free will is an illusion.