[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP v1.2.x to OpenLDAP v2.0.x conversion...



Hi Turbo
> Currently i use LDAP (the userPassword: {crypt}...) to store my passwords.
> This is because the company already had some customers when i started working
> here, and implemented a LDAP solution. Now we have even more customers,
> and i estimate around 3-4 months implementation time to get the new system
> underway (OpenLDAP v2.0.x, SASL, Kerberos, SSL/TLS).

You need plaintext password to generate the keys for kerberos
principals. So I think you'll have to force a password change.

-- 
Norbert Klasen
DFN Directory Services                           tel: +49 7071 29 70335
ZDV, Universität Tübingen                        fax: +49 7071 29 5912
Wächterstr. 76, 72074 Tübingen              http://www.directory.dfn.de
Germany                             norbert.klasen@zdv.uni-tuebingen.de