cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Stay updated on what is happening on the PTC Community by subscribing to PTC Community Announcements. X

Translate the entire conversation x

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.

Go to solution
MK_13455749
3-Newcomer
3-Newcomer
‎Jul 01, 2025 10:03 AM
‎Jul 01, 2025 10:03 AM

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.

I am using Windchill PDMLink Release 12.0 and Datecode with CPS 12.0.0.2

Unable to encrypt LDAP password available as plain in the HTTPServer conf files.
0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
avillanueva
23-Emerald I
23-Emerald I
(To:MK_13455749)
‎Jul 01, 2025 10:11 AM
‎Jul 01, 2025 10:11 AM

https://www.ptc.com/en/support/article/CS124944?source=search

I looked into this. If you follow the links to the Apache documentation, they have more information there. Its not really encryption more of obfuscation since it moves the password to a program which returns it when called. It follows that if I can call the program, it will just return the password anyway so what gives? Ensure that these conf files and folder are locked down to legit users and practice good cyber security. 

 

View solution in original post

Notify Moderator
1 REPLY 1
avillanueva
23-Emerald I
23-Emerald I
(To:MK_13455749)
‎Jul 01, 2025 10:11 AM
‎Jul 01, 2025 10:11 AM

https://www.ptc.com/en/support/article/CS124944?source=search

I looked into this. If you follow the links to the Apache documentation, they have more information there. Its not really encryption more of obfuscation since it moves the password to a program which returns it when called. It follows that if I can call the program, it will just return the password anyway so what gives? Ensure that these conf files and folder are locked down to legit users and practice good cyber security. 

 

Notify Moderator
Announcements

Contact Community Management
Top Tags