Re: setting up admin password on openldap

[Gavin Henry <ghenry@OpenLDAP.org>]

Naufal Sheikh wrote:
> Hello,
>
> Well Finally I have got something. I have one last question though, 
> regarding the concept, Below is the excerpt from my new slapd.conf:
>
> backend bdb
>
> database monitor
>
> database        bdb
> suffix          "o=trac"
> rootdn          "cn=nsadmin,o=trac"
>
>
> rootpw  plain-text password.
>
> When I write cn=nsadmin,o=trac in userDN box in ldap brwoser and give 
> the password given in the plain text in slapd.conf it connects to the 
> ldap server using the credentials.
>
> While in my old slapd.conf file which I was using as a reference the 
> rootpw line is hashed and in rootdn it is only :cn-nsadmin" as follows:
>
> backend bdb
>
> database monitor
>
> database        bdb
> suffix          "o=trac"
> rootdn          "cn=nsadmin"
>
>
> #rootpw  secret.
>
> Rest both the configuration files are same. But on the old server I can 
> still connect the ldap server through ldap browser using UserDn 
> cn=nsadmin and the password. My question is how is that happening? I 
> have not really grasped this idea.

It lets you connect because that's what you have written in the rootdn 
field.

> Also nsadmin exists as a user and I can see that it has a hashed 
> password on my original server, while on my new server since (probably i 
> did not used hashed password in slapd.conf) it appears as the plain 
> text. If any one can please point me to the right section of the guide 
> to understand or tell me in simple words!

You probably mean you see base64 encoding.

> Thank you all for your help despite of vague questions and replies.
>
> Regards



--
Kind Regards,

Gavin Henry.
OpenLDAP Engineering Team.

E ghenry@OpenLDAP.org

Community developed LDAP software.

http://www.openldap.org/project/