Configuring IDENT authentication on Linux v41
By default, the pg_hba.conf
file for the RPM installer enforces IDENT
authentication. Before invoking EDB*Plus, you must either:
- Modify the
pg_hba.conf
file, changing the authentication method to a form other thanIDENT
(and restarting the server. - Ensure that an
IDENT
server is accessible.
To ensure an IDENT
server is accessible, you must confirm that an identd
server is installed and running. You can use the yum
package manager to install an identd
server.
On RHEL or CentOS 7:
On RHEL/Rocky Linux/AlmaLinux 8:
The command creates a file named /etc/xinetd.d/auth
that contains:
Note
If the file includes a -E
argument at the end of the server arguments, delete -E
.
To start the identd
server:
Open the pg_ident.conf
file and create a user mapping:
Where:
- The name specified in the
map_name
column is a name you define to identify the mapping in thepg_hba.conf
file. - The name specified in the
system_username
column isenterprisedb
. - The name specified in the
postgres_username
column isenterprisedb
.
Then, open the pg_hba.conf
file and modify the IDENT
entries:
If you're using an IPv4 local connection, modify the file entry to read:
host all all 127.0.0.0/0 ident map=edbas
If you're using an IPv6 local connection, modify the file entry to read:
host all all ::1/128 ident map=edbas
You must restart the EDB Postgres Advanced Server service before invoking EDB*Plus. For detailed information about EDB Postgres Advanced Server, see the EDB Postgres Advanced Server documentation.