Encrypt LDAP Passwords
You can hide LDAP-related passwords in property files by encrypting them in the customer_overrides.property file.
The following parameters (properties can be used to be encrypted the LDAP passwords in the
customer_overrides.properties file:
Parameter/property | Description |
---|---|
authentication_policy.authentication_1.credentials | This parameter or property governs the principal password necessary to access an LDAP instance. This should be secured since no password that governs security and access should be exposed in plain text. |
authentication_policy.
LDAP_SECURITY_TRUSTSTORE_PASSWORD |
This parameter or property governs the password for the trust store (JKS format) used for securing LDAP connections. The passphrase for this JKS must be supplied so that the trust store can be accessed since it is an encrypted file. |
authentication_policy.
LDAP_SECURITY_KEYSTORE_PASSWORD |
This parameter or property governs the password if client-based SSL authentication is used to secure connections to a given LDAP instance. |
To encrypt LDAP passwords: