We are currently using IJC database user security but I have been thinking of moving our account information to our AD server to remove account duplication across multiple schema. Can someone tell me how this can be done or where I can find the information I need?
How can the managerDn and managerPassword be encrypted ? As things stand any database user with read access to the IJC tables can take a look at the password credentials.
I'm not sure if its posible to encrypt the password within the file. We need to investigate this.
But if its not possible then we shoudl be able to encrypt the whole XML file that is stored in the DB.
Maybe encrypting the whole thing is a better idea Tim, I hadn't thought of that option.
Since IJC 5.4 the security configurations are encrypted when stored in the database. When a security config is now saved it will automatically be encrypted. This avoids passwords being seen by unwanted eyes.