Greetings, * Daulat (daulat.dba@xxxxxxxxx) wrote: > Is there any alternative in postgres to manage the user password > authorisation? > What about LDAP with respect to this approach? PostgreSQL supports GSSAPI / Kerberos, which is a much better approach in Active Directory and other environments where Kerberos is deployed. Using LDAP exposes the user's password to the database server and therefore isn't secure and should be strongly discouraged. You can certainly have applications authenticate to PostgreSQL using Kerberos too with very little overhead (unlike PG's LDAP authentication option, which makes a synchronous call out to the LDAP server on each and every login). Thanks, Stephen
Attachment:
signature.asc
Description: PGP signature
