This week on the podcast, Kyle and Dan talk about password limitations with the DPK and what your options are when working complex passwords. Kyle also shares how the REN server was causing issues with the Master Scheduler.
Show Notes
- DPK Hashing Challenges @1:00
- DPK Password Guidance @ 7:00
- Cloud Manager Ideas @ 13:00
- Master Scheduler and REN @ 21:45
Your title about passwords caught my eye.
Have you tried using vault as a direct source for passwords for the DPK? What about using vault for the source of passwords once the domains are deployed? If so I would be very interested in hearing the details on how you got it to work. If so this would be a big timesaving for yearly password changes.
Hi Jane
Vault, or some similar tool, would be a great way to help manage passwords with the DPK. I haven’t played with it enough to get a good sense of how it would work though. HashiCorp Vault does have a backend for Hiera, so you can integrate the two.
I have question….. which password is the most complex ?
1) My dog is called fred and he has a short tail
2) kjj&33=22k*!sssjjjjeelkmmq0)uwsfg1
Basically, does a computer really think the ascii character 33 (!) is more complex than the ascii character 77 (M) ? To a human option (2) looks more complex but to a computer it’s just 1s and 0s.
https://blogs.technet.microsoft.com/robert_hensing/2004/10/22/password-vs-passphrase-redux/