From: | Stephen Frost <sfrost(at)snowman(dot)net> |
---|---|
To: | Ron <ronljohnsonjr(at)gmail(dot)com> |
Cc: | Pgsql-admin <pgsql-admin(at)lists(dot)postgresql(dot)org> |
Subject: | Re: LDAP and roles |
Date: | 2020-12-09 16:30:50 |
Message-ID: | 20201209163050.GW16415@tamriel.snowman.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin |
Greetings,
* Ron (ronljohnsonjr(at)gmail(dot)com) wrote:
> Does LDAP obviate the need for the PASSWORD clause of CREATE ROLE? It sounds
> obvious, but I wanted to verify before deciding whether or not to try LDAP,
> and did not see any reference in
> https://www.postgresql.org/docs/12/sql-createrole.html.
Using GSSAPI also results in the password not being needed to be set for
the role, and is actually secure, unlike LDAP-based auth where the
user's password is happily sent in the clear to the PG server.
Thanks,
Stephen
From | Date | Subject | |
---|---|---|---|
Next Message | Scott Ribe | 2020-12-09 16:59:32 | Re: 12 to 13 migration, the privs error with pg_pltemplate |
Previous Message | Scott Ribe | 2020-12-09 14:06:50 | Re: 12 to 13 migration, the privs error with pg_pltemplate |