Bug 1170767 - [GSS] (6.1.1 - patch) AdvancedLdapLoginModule should be able to retrieve password from Vault
Summary: [GSS] (6.1.1 - patch) AdvancedLdapLoginModule should be able to retrieve pass...
Keywords:
Status: CLOSED DUPLICATE of bug 1174871
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Security
Version: 6.1.1
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: One-off release
Assignee: Derek Horton
QA Contact: Josef Cacek
URL:
Whiteboard:
Depends On: 1170762 1170764
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-12-04 19:43 UTC by Derek Horton
Modified: 2019-04-16 14:26 UTC (History)
6 users (show)

Fixed In Version:
Clone Of: 1170764
Environment:
Last Closed: 2014-12-16 21:42:31 UTC
Type: Support Patch
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker SECURITY-871 0 Major Resolved AdvancedLdapLoginModule should be able to retrieve bindCredential from Vault 2016-04-12 08:03:11 UTC

Description Derek Horton 2014-12-04 19:43:15 UTC 
+++ This bug was initially created as a clone of Bug #1170764 +++

+++ This bug was initially created as a clone of Bug #1170762 +++

Description of problem:

The AdvancedLdapLoginModule is currently unable to retrieve the bindCredential from Vault
Comment 1 Derek Horton 2014-12-11 19:20:57 UTC 
Reproducer instructions:

- configure Vault
- configure the AdvancedLdap login module to use a "vaultified" bindCredential


             <security-domain name="jmx-console" cache-type="default">
               <authentication>
                <login-module code="AdvancedLdap" module="org.jboss.security.negotiation" flag="required">
                   <module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>
                   <module-option name="java.naming.provider.url" value="ldap://192.168.1.8:389"/>
                   <module-option name="java.naming.security.authentication" value="simple"/>

                   <module-option name="bindDN" value="cn=Manager,dc=my-domain,dc=com"/>
                   <module-option name="bindCredential" value="VAULT::LDAP::bindCredential::1"/>
Comment 2 Jimmy Wilson 2014-12-16 21:42:31 UTC 

*** This bug has been marked as a duplicate of bug 1174871 ***
Comment 3 JBoss JIRA Server 2015-01-06 15:59:20 UTC 
Darran Lofthouse <darran.lofthouse> updated the status of jira SECURITY-871 to Resolved
Note You need to log in before you can comment on or make changes to this bug.