[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#8023) slappasswd with sha2 overlay can generate hashes but not salted hashes

--On Tuesday, January 13, 2015 6:52 PM +0000 freebsd@jonathanprice.org 

> Full_Name: Jonathan Price
> Version: 2.4.40
> OS: FreeBSD 10.1
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (
> I have compiled version 2.4.40 with the SHA2 module enabled.
> I then run the slappasswd with the following arguments:
> slappasswd -h '{SHA512}' -o module-path=/usr/local/libexec/openldap -o
> module-load=pw-sha2

You requested a non salted hash -> SHA512

Did you try requesting a salted hash? -> SSHA512

Works fine for me, and I've been using it in production for quite some time.

[zimbra@zre-ldap003 ~]$ /opt/zimbra/openldap/sbin/slappasswd -h '{SSHA512}' 
-o module-path=/opt/zimbra/openldap/sbin/openldap -o module-load=pw-sha2 -s 



Quanah Gibson-Mount
Platform Architect
Zimbra, Inc.
Zimbra ::  the leader in open source messaging and collaboration