| From: | Stephen Frost <sfrost(at)snowman(dot)net> |
|---|---|
| To: | Greg k <gregg(dot)kay(at)gmail(dot)com> |
| Cc: | "pgsql-bugs(at)lists(dot)postgresql(dot)org" <pgsql-bugs(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: LDAP authentication fails with concurrent create extensions |
| Date: | 2018-04-10 11:31:57 |
| Message-ID: | 20180410113157.GL27724@tamriel.snowman.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
Greetings,
* Greg k (gregg(dot)kay(at)gmail(dot)com) wrote:
> We are using postgresql 10.3 on Centos 7.2 with LDAP authentication (samba4
> with AD domain controller). We've recently moved to LDAP authentication and
> are now encountering a problem where some concurrent connections that
> create extensions in different databases at the same time are failing with
> a "Can't contact LDAP server" error. The postgres error log contains:
You really shouldn't be using LDAP in an AD environment for
authentication- configure and use Kerberos instead, which is much more
secure than having cleartext passwords seen by the PG server and then
proxied to the LDAP server.
That said, there does appear to be an issue here, thanks for creating a
test case.
Stephen
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Euler Taveira | 2018-04-10 14:04:17 | Re: power() function in Windows: "value out of range: underflow" |
| Previous Message | Huong Dangminh | 2018-04-10 08:30:19 | power() function in Windows: "value out of range: underflow" |