Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Fix Version/s: None
Affects Version/s: None
Component/s: security
Labels:
- collector-de2e9313

Sprint:
DOC-2020-S8-May03
Story Points:
1
Page URL:
https://docs.couchbase.com/server/current/manage/manage-security/configure-ldap.html

Description

I have recently learned that once LDAP user authentication is enabled, the server expects Java clients to use TLS by default. Clients not using TLS have to make use of appropriate clusterOptions in Cluster.connect() calls.
See https://issues.couchbase.com/browse/CBSE-8172 and https://issues.couchbase.com/browse/JVMCBC-826 for details.

I haven't tested the behavior with non-Java SDKs, therefore I can't comment on that.

My request is that a generic caution like the following be added in this document.

Once LDAP user authentication is enabled, it will be best if the SDK clients start using TLS. Otherwise, they may have to refactor the Cluster.connect() code for logging in using LDAP users and non-LDAP users.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Richard Smedley

Reporter:: Nirvair Singh Bhinder

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 10/Apr/20 12:21 PM

Updated:: 24/Apr/20 2:12 PM

Resolved:: 22/Apr/20 2:58 AM

Gerrit Reviews

There are no open Gerrit changes

A caution is missing on this page

Details

Description

Attachments

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews

PagerDuty