| From: | Stephen Frost <sfrost(at)snowman(dot)net> |
|---|---|
| To: | Ron <ronljohnsonjr(at)gmail(dot)com> |
| Cc: | Pgsql-admin <pgsql-admin(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: LDAP and roles |
| Date: | 2020-12-09 16:30:50 |
| Message-ID: | 20201209163050.GW16415@tamriel.snowman.net |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Greetings,
* Ron (ronljohnsonjr(at)gmail(dot)com) wrote:
> Does LDAP obviate the need for the PASSWORD clause of CREATE ROLE? It sounds
> obvious, but I wanted to verify before deciding whether or not to try LDAP,
> and did not see any reference in
> https://www.postgresql.org/docs/12/sql-createrole.html.
Using GSSAPI also results in the password not being needed to be set for
the role, and is actually secure, unlike LDAP-based auth where the
user's password is happily sent in the clear to the PG server.
Thanks,
Stephen
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Scott Ribe | 2020-12-09 16:59:32 | Re: 12 to 13 migration, the privs error with pg_pltemplate |
| Previous Message | Scott Ribe | 2020-12-09 14:06:50 | Re: 12 to 13 migration, the privs error with pg_pltemplate |