The LDAP_BIND_EPWD statement specifies an encrypted password for the LDAP search user.
Linux, UNIX, and Windows
LDAP_BIND_DN, LDAP_BIND_PWD, LDAP_SASL_MECH
No
LDAP_BIND_epwd=
search_user_encrypted_password
For the
search_user_encrypted_password
variable, enter an encrypted password for the LDAP search user that is identified in the LDAP_BIND_DN statement.
You can create an encrypted password in the PowerExchange Navigator by selecting
File
Encrypt Password
.
If both of the following conditions apply, PowerExchange uses the default value, which is an empty string, as the search user password:
You do not define the LDAP_BIND_PWD statement or the LDAP_BIND_EPWD statement.
You do not both define the LDAP_TLS statement to require client certification and define the LDAP_SASL_MECH=EXTERNAL statement.
An empty string is acceptable if the LDAP server has been configured to allow anonymous access.
If you define the LDAP_TLS statement to require client certification and define the LDAP_SASL_MECH=EXTERNAL statement, the value of LDAP_BIND_EPWD is ignored. The credentials of the search user are determined from the client certificate and the certificate mapping of the LDAP server.