Greetings,
* Andrej (andrej.groups@gmail.com) wrote:
> I'm not aware of any such extension; but similar questions were asked in
> the past, and the common (and IMHO sensible) response is to tie postgres
> authentication into an external authentication provider, e.g. LDAP
I agree with the idea of tying PG to an external authentication
provider, but I strongly recommend to use GSSAPI and *not* LDAP, as LDAP
based auth is insecure and not needed when you're running an Active
Directory environment (which is a very common use-case that people
have in many places).
Thanks,
Stephen