| From: | Holger Jakobs <holger(at)jakobs(dot)com> |
|---|---|
| To: | pgsql-admin(at)lists(dot)postgresql(dot)org,Ilya Kosmodemiansky <hydrobiont(at)gmail(dot)com>,Pierre Ochsenbein <pierreochsenbein(at)gmail(dot)com> |
| Cc: | pgsql-admin <pgsql-admin(at)postgresql(dot)org> |
| Subject: | Re: LDAP security connection |
| Date: | 2019-04-13 05:13:25 |
| Message-ID: | CCAECF26-4EC2-445D-B26F-7A01E3F6968D@jakobs.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
If you run PostgreSQL on Windows (don't know whether and how it works on other OS), writing sspi instead of md5 in pg_hba.conf is sufficient to connect it to Active Directory.
Add a pg_ident file to match PG users with AD users an you are done.
Regards,
Holger
Am 12. April 2019 10:17:52 MESZ schrieb Ilya Kosmodemiansky <hydrobiont(at)gmail(dot)com>:
>Hi Pierre
>
>in general, there is nothing too complicated -
>https://www.postgresql.org/docs/11/auth-ldap.html because LDAP is just
>an authentication method.
>
>Details could be more tricky, but for that more details on your
>requirements needed - do you use pgbouncer, do you need to sync roles
>from AD etc.
>
>best regards,
>Ilya
>
>On Fri, Apr 12, 2019 at 9:58 AM Pierre Ochsenbein
><pierreochsenbein(at)gmail(dot)com> wrote:
>>
>> Dear community
>>
>> I would like to create a connection security to PostgreSQL from
>Active Directory with auth LDAP.
>> Have you some recommendation for make this steps?
>>
>> Have a great Friday
>>
>>
--
Holger Jakobs, Bergisch Gladbach
+49 178 9759012
- sent from mobile, therefore short -
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Pierre Ochsenbein | 2019-04-13 07:02:23 | Re: LDAP security connection |
| Previous Message | Tim Cross | 2019-04-13 00:44:38 | Re: pg_dump using anything other than custom and directory |