[Date Prev][Date Next] [Chronological] [Thread] [Top]

Password Encryption in OpenLDAP

I have a few problems with encryption in OpenLDAP.
I am currently using version 2.0.23 with BerkeleyDB 3.2.9 on Solaris 2.8

I would like to make clients of my slapd server unable to add
cleartext passwords in my backend database.

In order to do that, I have used the following options for configure before compiling :

My make test then logically fails since passwords for the tests are plain
(at stage 3 when using the ldapadd operation). I tried to make the tests work
by substituting the cleartext password with crypt ones but the tests continued to fail.

I installed the compiled files anyway by running make install and I succeeded in adding
with the ldapbrowser a cleartext password for an entry in the id2entry.dbb file of the
database (when editing this file, the added password is plain).
Can someone explain to me what this happens?
Thank you in advance for all your help.

PS : Is OpenLDAP able to crypt passwords when using the following operations : slapadd,
ldapmodify, ldapadd ??? (For instance, I have an ldif with clear text passwords and I want
to add it with ldapadd to the database and the passwords to be crypted)