[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: authentification issue with clear text password

To: Szilard Gyorgy <szilard@gyorgy.net>
Subject: Re: authentification issue with clear text password
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Date: Wed, 15 Feb 2012 15:19:21 +0100
Cc: openldap-technical@openldap.org
In-reply-to: <001301ccebd6$4f7ecae0$ee7c60a0$@gyorgy.net>
References: <001301ccebd6$4f7ecae0$ee7c60a0$@gyorgy.net>
User-agent: Roundcube Webmail/0.4.2

On Wed, 15 Feb 2012 13:38:17 +0200, "Szilard Gyorgy"<szilard@gyorgy.net> wrote:

ldapcompare -D "uid=testuser,ou=Users,dc=domain,dc=net" -w test
"uid=testuser,ou=Users,dc=domain,dc=net" -v userPassword:test


Why are you using compare at all?  The server already checked
the password when it accepted your Bind with -D and -w <password>.
I don't think there's an ldap tool which does nothing but Bind,
so you have to ask it to do something afterwards but it doesn't
really matter what.  In such cases I usually use ldapwhoami:

   ldapwhoami -x -D "uid=testuser,ou=Users,dc=domain,dc=net" -w test

The -x disables SASL, which you do not use or want with -D/-w.
SASL is on by default if you have compiled in support for it.

BTW, maybe you want to use -y <file> for the password instead.
Note that the file contents must NOT end with a newline, unless
the newline is part of the password.

Hallvard

Follow-Ups:
- RE: authentification issue with clear text password
  - From: "Szilard Gyorgy" <szilard@gyorgy.net>

References:
- authentification issue with clear text password
  - From: "Szilard Gyorgy" <szilard@gyorgy.net>

Prev by Date: RE: authentification issue with clear text password
Next by Date: RE: authentification issue with clear text password
Index(es):
- Chronological
- Thread