![]() ![]() Preoperationsearch - Invoked prior to performing the core search processing. Preoperationmodifydn - Invoked prior to performing the core modify DN processing. Preoperationmodify - Invoked prior to performing the core modify processing. Preoperationextended - Invoked prior to performing the core extended processing. Preoperationdelete - Invoked prior to performing the core delete processing. Preoperationcompare - Invoked prior to performing the core compare processing. Preoperationbind - Invoked prior to performing the core bind processing. Preoperationadd - Invoked prior to performing the core add processing. Preparseunbind - Invoked prior to parsing an unbind request. Preparsesearch - Invoked prior to parsing a search request. Preparsemodifydn - Invoked prior to parsing a modify DN request. Preparsemodify - Invoked prior to parsing a modify request. Preparseextended - Invoked prior to parsing an extended request. Preparsedelete - Invoked prior to parsing a delete request. Preparsecompare - Invoked prior to parsing a compare request. Preparsebind - Invoked prior to parsing a bind request. ![]() Preparseadd - Invoked prior to parsing an add request. Preparseabandon - Invoked prior to parsing an abandon request. Ldifexport - Invoked for each operation to be written during an LDIF export. Ldifimport - Invoked for each entry read during an LDIF import. Postdisconnect - Invoked whenever an existing connection is terminated (by either the client or the server). Postconnect - Invoked whenever a new connection is established to the server. Shutdown - Invoked during a graceful Directory Server shutdown. Startup - Invoked during the Directory Server startup process. Specifies the set of plug-in types for the plug-in, which specifies the times at which the plug-in is invoked. Plugin-type (Advanced Property) Description This value does need to be set on the Data Sync Server, so that it can decrypt and synchronize user passwords to other destinations. The encryption key is actually cryptographically derived from this value, so there are no minimum complexity requirements here. The same passphrase also needs to be set (either through the "changelog-password-decryption-key" property or the "changelog-password-decryption-key-passphrase-provider" property) in the Global Sync Configuration in the Data Sync Server. This value does need to be set on the Data Sync Server, so that it can decrypt and synchronize user passwords to other destinations.Ĭhangelog-password-encryption-key-passphrase-provider DescriptionĪ passphrase provider that may be used to obtain the passphrase that will be used to generate the key for encrypting passwords stored in the changelog. Indicates whether the plug-in is enabled for use.Ĭhangelog-password-encryption-key DescriptionĪ passphrase that may be used to generate the key for encrypting passwords stored in the changelog. ↓ changelog-password-encryption-key-passphrase-provider ![]() The properties supported by this managed object are as follows: The following components have a direct aggregation relation from Changelog Password Encryption Plugins: The Changelog Password Encryption Plugin component inherits from the Plugin Relations from This Component The encrypted value will get replicated (in a replicated environment), but this plugin must be enabled on any replica that can process password modifications. ![]() If the changelog is not enabled or the encryption key is not specified, this plugin has no effect. The encryption is performed with key derived from the changelog-password-encryption-key property on this plugin. The main purpose of this is to allow changelog entries to store this encrypted form of the password so that it may be synchronized to other types of endpoints (such as Active Directory or Oracle) using the Ping Identity Data Sync Server. The Changelog Password Encryption Plugin adds an encrypted form of the user password attribute to ADD and MODIFY operations that include the user password. If you believe that such a change is necessary, you may want to contact support in order to understand the potential impact of that change. Note: this component is designated "advanced", which means that objects of this type are not expected to be created or altered in most environments. Configuration Reference Home Changelog Password Encryption Plugin ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |