On Fri, Sep 13, 2013 at 10:00 PM, Bill Moran wrote:
>
> Looking at using LDAP to ease the pain of maintaining user accounts across
> many tens of PostgreSQL servers ...
>
> As documented, LDAP solves a few of the problems we have -- since everyone
> will be in LDAP, we can use LDAP's password comp
On Fri, 13 Sep 2013 16:29:47 -0400 Stephen Frost wrote:
>
> > Thus, when I go to log in as wmoran, LDAP checks my password, then informs
> > PostgreSQL to allow me in with specified roles, and I can do operations
> > granted to those roles.
>
> That's a little over-simplistic, isn't it? What ab
* Bill Moran (wmo...@potentialtech.com) wrote:
> As documented, LDAP solves a few of the problems we have -- since everyone
> will be in LDAP, we can use LDAP's password complexity rules and password
> expiration to handle those security requirements, and (of course) when
> someone changes their pa
Looking at using LDAP to ease the pain of maintaining user accounts across
many tens of PostgreSQL servers ...
As documented, LDAP solves a few of the problems we have -- since everyone
will be in LDAP, we can use LDAP's password complexity rules and password
expiration to handle those security r
