#4155 Wrong description for 'ldap_default_authtok' in 'sssd-ldap' man page
Closed: cloned-to-github a year ago by pbrezina. Opened a year ago by tscherf.

# man 5 sssd-ldap
ldap_default_authtok (string)
           The authentication token of the default bind DN. Only clear text passwords are currently supported.

Obcuscated passwords are supported for quite some time already.

Hi Thorsten,

thanks for the report. Would you like to send a PR for this? While it is in general a good idea to add more details to man page entries I think it is important to mention clear text password here first. An obfuscated password is only obfuscated in sssd.conf but it will be used in clear text on the wire when doing the LDAP bind. So as long as there is not TLS tunnel the password is send in clear text over the network.


Metadata Update from @thalman:
- Issue tagged with: Future milestone, docs

a year ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/5111

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @pbrezina:
- Issue close_status updated to: cloned-to-github
- Issue status updated to: Closed (was: Open)

a year ago

Login to comment on this ticket.