From: Adam Williams <awilliam@whitemice.org> To: Gregory Chagnon <gregchagnon@hotmail.com> CC: openldap-software@OpenLDAP.org Subject: Re: smbldap tools Date: Thu, 31 Oct 2002 16:07:36 -0500 (EST)
>I'm using the smbldap tools to enter in users to a LDAP directory. For the
>password, it's making 3 entries, lmPassword, ntPassword, and userPassword.
>Does anyone know which hashing algorithms they each use? Also, what are
>each of those entries used for? Thanks !!!
userPassword is the "posixAccount" password, it is crypted the way you tell it to; could be clear text, triple-des, crypt(), md5, sha, etc...
lmPassword is the LAN manager encrytped password. Used by legacity PC operating systems like Wfwg, OS/2, early-early versions of Win9x.
ntPassword is the NT-MD5 hash used for challange response by the Microsoft domain model.
Samba manages lmPassword and ntPassword, typically userPassword is managed via "passwd". Samba can call "passwd" on behalf of the user whenever the lmPasswd/ntPassword pair change. Thus creating the illusion of a unified password.