Your feedback is important to us! Email us how we can improve these documents.
The default Pentaho deployment requires the entry of the master-user’s password in plain text within the LDAP properties configuration file. The usual recommendation is to secure this file by removing read permissions for all OS users except for the master-user, but your security regulations may specify that you are not able to use a plain text password in the file system.
If you are configuring the Pentaho BA server to use LDAP authentication, you will need to create a master-user that is able to query the LDAP server to get details about users, roles, and authenticate when a user is logging in.