On Wed, Mar 7, 2018 at 6:13 AM, Bjørn T Johansen <b...@havleik.no> wrote:
> Hi. > > Is it possible to use one authentication method as default, like LDAP, and > if the user is not found, then try to authenticate using > md5/scram-sha-256 ? > In the "Client Authentication" Chapter: https://www.postgresql.org/docs/10/static/auth-pg-hba-conf.html """ The first record with a matching connection type, client address, requested database, and user name is used to perform authentication. There is no “fall-through” or “backup”: if one record is chosen and the authentication fails, subsequent records are not considered. If no record matches, access is denied. """ David J.
