The value of the LdapServicePasswordProtected property indicates whether the password defined in LdapServicePassword is stored in encrypted form. You can use the -s option of the tdspasswd tool to create an encrypted version of the LdapServicePassword. See Identity Search Implementation Process.
The LdapServicePassword property is usable for all mechanisms that support service binds.
If you use this property also configure the LdapServiceFQDN and LdapServicePassword properties.
Valid Settings
Setting | Description |
---|---|
yes | The TdgssUserConfigFile.xml stores the LdapServicePassword in encrypted form |
no (default) | The TdgssUserConfigFile.xml stores the LdapServicePassword in plain text. |
Editing Guidelines
- To set a value, you must manually add this property to the TDGSS configuration file on needed mechanisms. See About Editing Configuration Files.
- Edit this property on database nodes and the Unity server, if used. Also see Coordinating Mechanism Property Values for Unity.
- This property does not encrypt the password. It is only an indicator of encryption.
- If you want to encrypt the password, use the procedure found in Editing TdgssUserConfigFile.xml for Service Binds to generate an encrypted password for the LdapServicePassword property, and insert it into the TdgssUserConfigFile.xml, then set the LdapServicePasswordProtected property to yes to indicate that the service password is encrypted.