Liferay gives you various methods of connecting to LDAP. Of course, the preferred method is BIND, which Liferay defaults to, and in that case, Liferay doesn't have to store the LDAP password in the database. For binding, encryption is provided by the com.sun.crypto.provider.SunJCE class. If you elect to use the password-compare method, Liferay offers many different algorithms you can choose:
That was very helpful, but could you please explain the bind process?
Is this for the passwords for liferay users or for the configured LDAP connection?
My client is mainly concerned with the LDAP connection password(for the moment).
Thanks in advance
Joined: Dec 13, 2006
This all, of course, depends on how your LDAP directory is configured. If you're running LDAP unsecured (i.e., the ldap:// protocol), passwords are in the clear. If you're running LDAP secured (ldaps://), passwords are encrypted.
Instructions for connecting Liferay in a secure way to LDAP are in Liferay's documentation here, and it uses Active Directory as the example: