[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: batch encrypting passwords

To: charlie derr <cderr@simons-rock.edu>
Subject: Re: batch encrypting passwords
From: Michael Ströder <michael@stroeder.com>
Date: Mon, 03 Mar 2003 21:26:43 +0100
Cc: OpenLDAP-software@OpenLDAP.org
In-reply-to: <3E6387E7.2050005@simons-rock.edu>
References: <1046703569.3031.86.camel@fmedina> <3E6387E7.2050005@simons-rock.edu>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20021130

charlie derr wrote:

I think the easiest way is to use a scripting language to build an ldif file (and then apply it with ldapmodify).

It' almost as easy to use your favourite scripting language together with an LDAP module to write directly to the directory via LDAP. This gives you better error handling and less hassle with LDIF.

  output = output + "changetype: modify\n"
  output = output + "replace: userPassword\n"
  output = output + "userPassword: {crypt}" + pw + "\n\n"


to stay with Python example here (l is LDAPObject instance):

try:
  l.modify_s(
    "uid=" + username + ",ou=People,dc=example,dc=com,
    [
      (ldap.MOD_REPLACE,'userPassword',["{crypt}" + pw])
    ]
  )
except ldap.LDAPError,e:
  # do error handling here: at least log
  print str(e)

Ciao, Michael.

References:
- batch encrypting passwords
  - From: "Fernando Medina, Jr." <fmedina@grupo-uno.com>
- Re: batch encrypting passwords
  - From: charlie derr <cderr@simons-rock.edu>

Prev by Date: Re: openldap 2.1.14 and berkley 4.1.24
Next by Date: Re: Java-LDAP APIs
Index(es):
- Chronological
- Thread