[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Password encryption (crypt) incompatibility

To: openldap-software@OpenLDAP.org
Subject: Re: Password encryption (crypt) incompatibility
From: Timo Felbinger <Timo.Felbinger@physik.uni-potsdam.de>
Date: Tue, 21 Mar 2006 14:54:21 +0100
Content-disposition: inline
Delivered-to: outfilter-openldap-software@openldap.org@relay
In-reply-to: <e224e24475b20525b568c2a94d91842a@wanadoo.fr>
References: <e224e24475b20525b568c2a94d91842a@wanadoo.fr>
User-agent: Mutt/1.4.2i

On Tue, Mar 21, 2006 at 10:23:48AM +0100, Smoltok wrote:
> 
> Hello,
> 
> I have configured and installed a replica on an OpenLDAP 2.3.4 with 
> --enable-crypt option.
> The master is on another place on an OpenLDAP 2.2.x.
> 
> The synchronization is correct but we have a problem with password.
> 
> I can't connect in command line or in java with an user DN and password 
> to my server. ( "invalid credential" ).
> If i created a password on my own server with slappasswd and insert it 
> into my entry and it works.
> 
> So is it possible that between version 2.2.x and 2.3.4 there is such an 
> incompatibility ?
> 
> Maybe the problem is somewhere else...

Yes: if you are indeed using CRYPT passwords, then the password hash
is computed by the crypt() function in the system library, so the
incompatibility may be there.
With a different hash algorithm, you should not see this problem.

Best Regards,

Timo Felbinger

References:
- Password encryption (crypt) incompatibility
  - From: Smoltok <Smoltok@wanadoo.fr>

Prev by Date: Re: SSL connection using libLDAP [Even More Questions]
Next by Date: DB_LOG_AUTOREMOVE error with slapadd
Index(es):
- Chronological
- Thread