kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 28 Pull Requests 4 Projects 2 Activity

Improve LDAP example command

Browse Source 
We should not log passwords in bash history files. This change will
prompt the user for the password instead.
This commit is contained in:
Basti 2020-04-19 13:01:39 +02:00
parent 4f1bf768ee
commit 73e87f8f45
No known key found for this signature in database
GPG Key ID: BE4634D632D39B67
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
doc/ldap.md
View File

@ -1,6 +1,6 @@
# LDAP (389 Directory Server). # LDAP (389 Directory Server)
## Credentials ## Credentials
The admin account is `cn=Directory Manager` with the password stored in the The admin account is `cn=Directory Manager` with the password stored in the
encrypted data bag `admin_password` item encrypted data bag `admin_password` item
@ -9,8 +9,8 @@ encrypted data bag `admin_password` item
$ knife data bag show credentials dirsrv --secret-file .chef/encrypted_data_bag_secret $ knife data bag show credentials dirsrv --secret-file .chef/encrypted_data_bag_secret
``` ```
## Example search: ## Example search (will prompt for password):
``` ```
$ ldapsearch -x -w $password -D 'cn=Directory Manager' -b "ou=users,dc=kosmos,dc=org" -H "ldaps://ldap.kosmos.org" -v $ ldapsearch -x -W -D 'cn=Directory Manager' -b "ou=users,dc=kosmos,dc=org" -H "ldaps://ldap.kosmos.org" -v
``` ```