[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Encrypting replication credentials in replica directive (ITS#299)
Full_Name: Trevor Porter
Version: 1.2.7
OS: Solaris 2.6 x86
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (209.24.64.3)
It should be possible to encrypt a password used in a replica directive similar
to
the rootpw directive, otherwise a password must be exposed in the clear in
slapd.conf.
For example, slapd.conf could contain:
replica host=replica
binddn="cn=Replicator, o=U of M, c=US
bindmethod=simple credentials={crypt}zFYcu4MQ4G.Rs
instead of:
replica host=replica
binddn="cn=Replicator, o=U of M, c=US
bindmethod=simple credentials=secret
Am I missing something, or is this not possible?