[Date Prev][Date Next] [Chronological] [Thread] [Top]

Password Encryption

To: "'openldap-software@OpenLDAP.org'" <openldap-software@OpenLDAP.org>
Subject: Password Encryption
From: "Cornwall, George" <GCornwall@citistreetonline.com>
Date: Wed, 9 May 2001 14:48:49 -0400

We are testing porting our Netscape LDAP functionality over to OpenLDAP. We
are currently having multiple issues with the encryption of the password
attribute.
1) The default password-hash for Netscape is SHA and for OpenLDAP it is
SSHA. Is there anyway to use the same hash in OpenLDAP? When we try setting
it in the slapd.conf file (password-hash	SHA) we get an error message
when starting slapd:
"unknown directive in ldbm database definition (ignored)".
If this is not doable, we realize we can reset all the passwords (however we
are talking about changing approximately 400,000 passwords).
2) Currently OpenLDAP is not encrypting new or modified passwords, but
instead leaving them as clear text. What do we need to modify to turn
encryption on?

Any help is greatly appreciated.

Ged Cornwall
Senior Architect, Web Solutions
gcornwall@citistreetonline.com
904.791.2195

Follow-Ups:
- Re: Password Encryption
  - From: Jens Vagelpohl <jens@digicool.com>

Prev by Date: sasl and simple auth
Next by Date: OpenLDAP 1.2 and Iplanet 4.1 Web server
Index(es):
- Chronological
- Thread