[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: second userpassword?

To: openldap-software@OpenLDAP.org
Subject: Re: second userpassword?
From: Daniel Tiefnig <openldap@qmail.infonova.at>
Date: Thu, 14 Mar 2002 12:05:55 +0100
Organization: Infonova
References: <3C8F486F.60206@emt.iis.fhg.de> <1016036465.808.0.camel@tux> <3C905BEA.7030007@emt.iis.fhg.de>

Susanne Benkert wrote:

I know that userPassword is a "multiple values attribute" but that doesn't really help me, because I have to use different passwords for different services and different levels of security.

the easiest (meaning "simple") solution for that might be to just add one entry for each service you'd like to serve, like that:

dn: uid=john,ou=mailuser,dc=company,dc=com
userpassword: foo
...

dn: uid=john,ou=homepageuser,dc=company,dc=com
userpassword: bar
...

that solution can be used easily with all kind of LDAP-aware software..

another possibility is to add your own attributes like "mailpassword", "hompagepassword" and thelike and change your client software to use that for authentication.. LDAP design would be much nicer in that case, but it'll be quite a hack on the client side, i'd guess..


hth,
daniel

References:
- second userpassword?
  - From: Susanne Benkert <benkerts@emt.iis.fhg.de>
- Re: second userpassword?
  - From: Susanne Benkert <benkerts@emt.iis.fhg.de>

Prev by Date: Paper on the use of OpenLDAP + pamldap + nssldap
Next by Date: Re: part of ldif (problem with slapadd)
Index(es):
- Chronological
- Thread