Support Questions
Find answers, ask questions, and share your expertise

Does Knox allow LDAP Password to be stored outside the the topology xml file?

Solved Go to solution
Highlighted

Does Knox allow LDAP Password to be stored outside the the topology xml file?

Contributor

Is there a way the LDAP password can be stored somewhere other than "main.ldapRealm.contextFactory.systemPassword" in the topology XML config file? Customer would like to store this password elsewhere for added security.

Thanks!

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted

Re: Does Knox allow LDAP Password to be stored outside the the topology xml file?

You may use an alias that points to a credential store, which contains the actual systemPassword. Refer to the Knox User Guide, section Special note on parameter main.ldapRealm.contextFactory.systemPassword

View solution in original post

3 REPLIES 3
Highlighted

Re: Does Knox allow LDAP Password to be stored outside the the topology xml file?

You may use an alias that points to a credential store, which contains the actual systemPassword. Refer to the Knox User Guide, section Special note on parameter main.ldapRealm.contextFactory.systemPassword

View solution in original post

Highlighted

Re: Does Knox allow LDAP Password to be stored outside the the topology xml file?

To add to @Alex Miller's answer here is the doc section for creating the password alias. http://knox.apache.org/books/knox-0-6-0/user-guide.html#Alias+creation

Highlighted

Re: Does Knox allow LDAP Password to be stored outside the the topology xml file?

Mentor

@Wes Floyd has this been resolved? Can you accept the best answer or provide your own solution?