[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Migrated users cannot bind - HELP!
Hi Matt,
What flavor of UNIX/Linux are you using? What version of OpenLDAP are you
using? Are you building OpenLDAP against OpenSSL? If so what version of
OpenSSL.
Most likely your OpenLDAP linked against OpenSSL (-lcrypto) without prior
linking against the proper system library (-lcrypt) so the crypt()
function of OpenSSL is used instad of the system crypt() function. Your
version of OpenSSL may not handle md5 crypt hashed passwords.
I am using OpenSSL 0.9.7e which handles md5 passwords.
You should installed this version of OpenSSL and recompile your OpenLDAP
against it.
Hope this help.
Sam
> I've migrated my users from Aphelion to OpenLDAP via an LDIF. I've
> confirmed the userPassword's are the same value in both servers. When I
> attempt to bind to the OpenLDAP server, I get error 49 (Invalid
> Credentials).
>
> The userPassword for the account I'm testing with looks like this
> internally: {CRYPT}oLPFQc���
>
> Any ideas of why can't I bind to the OpenLDAP server?
>
> Is it possible Aphelion uses a different crypt() method than OpenLDAP?
> Because I created a new user on the OpenLDAP server and set its password
> to
> the same plain text value as the account that won't bind. That
> userPassword
> looks like this: {CRYPT}5RpLGC8nBNlhw
>
> I CAN bind to the new account.
>
> IF this helps, I know Aphelion uses DES for encryption per their
> documentation. How do I get OpenLDAP to do that? Or how do I get the
> migrated users to bind period?
>
> Please help! I don't want to make all my users reset their passwords.
>
> Any thoughts are welcome.
>
> Regards,
> Matt
>
>
>