Send feedback
(Indirect binding only) Encrypting the external LDAP user's password
Edge for Private Cloud v4.18.05
If you are using indirect binding, you need to provide an external LDAP username and password
in management-server.properties
that Apigee uses to log into the external LDAP and
perform the indirect credential search.
Note: Using plain text passwords in config files may be
adequate for testing purposes; however, for production environments, encryption is highly
recommended.
The following steps explain how to encrypt your password:
Execute the following Java utility, replacing the YOUR_EXTERNAL_LDAP_PASSWORD
with your actual external LDAP password:
java -cp /opt/apigee/edge-gateway/lib/thirdparty/*:/opt/apigee/edge-gateway/lib/kernel/*:/opt/apigee/edge-gateway/lib/infra/libraries/*
com.apigee.util.CredentialUtil --password="YOUR_EXTERNAL_LDAP_PASSWORD "
In the output of the command, you will see a newline followed by what looks like a random
character string. Copy that string.
Edit /opt/apigee/customer/application/management-server.properties
.
Update the following property, replacing myAdPassword with the string you
copied from step 2, above.
conf_security_externalized.authentication.indirect.bind.server.admin.password=myAdPassword
Be sure the following property is set to true:
conf_security_externalized.authentication.indirect.bind.server.admin.password.encrypted=true
Save the file.
Restart the Management Server:
/opt/apigee/apigee-service/bin/apigee-service edge-management-server restart
Verify that the server is running:
/opt/apigee/apigee-service/bin/apigee-all status
Testing the installation
See the testing section at the end of Enabling
external authentication , and perform the same test described there.
Send feedback
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License , and code samples are licensed under the Apache 2.0 License . For details, see the Google Developers Site Policies . Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-04-30 UTC.
[{
"type": "thumb-down",
"id": "missingTheInformationINeed",
"label":"Missing the information I need"
},{
"type": "thumb-down",
"id": "tooComplicatedTooManySteps",
"label":"Too complicated / too many steps"
},{
"type": "thumb-down",
"id": "outOfDate",
"label":"Out of date"
},{
"type": "thumb-down",
"id": "samplesCodeIssue",
"label":"Samples / code issue"
},{
"type": "thumb-down",
"id": "otherDown",
"label":"Other"
}]
[{
"type": "thumb-up",
"id": "easyToUnderstand",
"label":"Easy to understand"
},{
"type": "thumb-up",
"id": "solvedMyProblem",
"label":"Solved my problem"
},{
"type": "thumb-up",
"id": "otherUp",
"label":"Other"
}]
Need to tell us more?
{"lastModified": "Last updated 2024-04-30 UTC."}
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-04-30 UTC."],[],[]]