[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: password encryption question

----- "Mike Simonton" <mike.simonton@promptutech.com> wrote:

> Hello,
> I want to change the default âsecretâ password in the slapd.conf file
> to something thatâs encrypted in some way to hide the clear text
> password for the Manager account. Whatâs the best and easiest way to
> go about doing this? Is slappasswd the way to not only do this but
> change passwords for any users in the database, or is ldappasswd the
> way to go?

slappasswd is used to create an encrypted password for storing in slapd.conf and/or slapd.d

A user entry password i.e. userPassword can be changed many ways. ldappasswd is one

> One other question â does anyone have an example slapd.conf file that
> uses the /etc/passwd and /etc/shadow files to manage the passwords for
> openldap, particularly for the Manager account?

If you mean centerally storing user passwords etc. this is what pam_ldap is for.

pam_ldap will use the PAM framework on a machine to authenticate users against a
directory server.


Kind Regards,

Gavin Henry.

T +44 (0) 1224 279484
M +44 (0) 7930 323266
F +44 (0) 1224 824887
E ghenry@suretecsystems.com

Open Source. Open Solutions(tm).


Suretec Systems is a limited company registered in Scotland. Registered
number: SC258005. Registered office: 13 Whiteley Well Place, Inverurie,
Aberdeenshire, AB51 4FP.

Subject to disclaimer at http://www.suretecgroup.com/disclaimer.html