cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Visit the PTCooler (the community lounge) to get to know your fellow community members and check out some of Dale's Friday Humor posts! X

Translate the entire conversation x

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.

Go to solution
MK_13455749
2-Explorer
2-Explorer
‎Jul 01, 2025 10:03 AM
‎Jul 01, 2025 10:03 AM

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.

I am using Windchill PDMLink Release 12.0 and Datecode with CPS 12.0.0.2

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.
0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
avillanueva
22-Sapphire III
22-Sapphire III
(To:MK_13455749)
‎Jul 01, 2025 10:11 AM
‎Jul 01, 2025 10:11 AM

https://www.ptc.com/en/support/article/CS124944?source=search

I looked into this. If you follow the links to the Apache documentation, they have more information there. Its not really encryption more of obfuscation since it moves the password to a program which returns it when called. It follows that if I can call the program, it will just return the password anyway so what gives? Ensure that these conf files and folder are locked down to legit users and practice good cyber security. 

 

View solution in original post

Notify Moderator
1 REPLY 1
avillanueva
22-Sapphire III
22-Sapphire III
(To:MK_13455749)
‎Jul 01, 2025 10:11 AM
‎Jul 01, 2025 10:11 AM

https://www.ptc.com/en/support/article/CS124944?source=search

I looked into this. If you follow the links to the Apache documentation, they have more information there. Its not really encryption more of obfuscation since it moves the password to a program which returns it when called. It follows that if I can call the program, it will just return the password anyway so what gives? Ensure that these conf files and folder are locked down to legit users and practice good cyber security. 

 

Notify Moderator
Announcements

Contact Community Management
Top Tags