Unable to connect to postgres using GSSAPI encrypted connection #1220
Labels
needs response
Needs a response from the issue/PR author
Comments
This was referenced Jun 14, 2022
|
I don’t understand how this issue has anything to do with pgx(?) |
|
I’m closing this since it does not appear to be related to pgx. Please reopen if you think it is. |
# for free
to join this conversation on GitHub.
Already have an account?
# to comment
I am using kerberos authentication to connect to postgres. In pg_hba.conf there is a separate host type
hostgssenc, which enables secure data transport between client and server. If I use this line:host all all 0.0.0.0/0 gss include_realm=1 krb_realm=DOMAIN1.LOCALeverything works fine. However, the connection is not secure.
If I change
hosttohostgssenc, I get this error:failed to connect to host=postgres user=testuser@DOMAIN1.LOCAL database=vault: server error (FATAL: no pg_hba.conf entry for host "172.18.0.2", user "testuser@DOMAIN1.LOCAL", database "vault", no encryption (SQLSTATE 28000))
If I connect to postgres via psql, the connection becomes secure along with authentication.
I suppose this error may be related to gokrb5 library, but I'm not sure
The text was updated successfully, but these errors were encountered: