[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: secure passwords



sim123 wrote:
> 
> 2011/9/14 Michael Ströder <michael@stroeder.com <mailto:michael@stroeder.com>>
> 
>     sim123 wrote:
>     > I am not sure what password modification extended operation is
> 
>     It's a separate LDAP extended operation working on a already existing entry
>     not a normal modify operation (see RFC 3062).
> 
> 
> So if I add a user from C API, it should add blank in userPassowrd attribute
> and then I modify userPaswed, is that correct? Can I do, Add and modify in
> same modify request to guarantee the atomicity of operation? Would ldap still
> treat it as extended operation?

Please read RFC 4511 first and then RFC 3062 to understand the different
operations. Otherwise coding that will be a mess. Maybe you're more familiar
with a scripting language for which there's also a decent LDAP module.

>     > or does openLDAP offer some kind of API to do so?
> 
>     See functions ldap_passwd/ldap_passwd_s in OpenLDAP's C API.
> 
> Could not find these function in man page or google search, can you please
> point me to a reference? Thanks for the help. 

See include/ldap.h

Ciao, Michael.