[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: OpenLDAP 2.1 Released

To: Howard Chu <hyc@highlandsun.com>
Subject: RE: OpenLDAP 2.1 Released
From: Igor Brezac <igor@ipass.net>
Date: Wed, 12 Jun 2002 10:17:04 -0400 (EDT)
Cc: Tarjei Huse <tarjei@nu.no>, <openldap-software@OpenLDAP.org>
In-reply-to: <Pine.GSO.4.33.0206111610220.5075-100000@pula.ypass.net>

On Tue, 11 Jun 2002, Igor Brezac wrote:

> > In Cyrus SASL 2, most of the mechanisms derive their secrets from the
> > plaintext password, and the database itself only stores the plaintext
> > password. They thoughtfully named their database key "userPassword" so
> > using LDAP is seamless. Just use ldapmodify (not ldappasswd) to set a
> > user's userPassword to a plaintext string and it will be usable by all
> > of the SASL mechanisms. (Except SASL/OTP, which always has to record and
> > update its own secret after every use.)
>
> If you use ldap support in saslauthd you can use ldapmodify.  Passwords

Oops, I meant to say ldappasswd here.

> are stored in a format supported by OpenLDAP (crypt, sha, md5, whichever way
> you have it setup).  saslauthd verifies password with ldap_simple_bind().
>

-Igor

References:
- RE: OpenLDAP 2.1 Released
  - From: Igor Brezac <igor@ipass.net>

Prev by Date: Re: Paging Support
Next by Date: Re: ldap_set_option (may be off topic)
Index(es):
- Chronological
- Thread