|
Hi Dan,
We use a web application to rest user password and when a password is reset it shows up as crypt hashed in userPassword attribute. Any way I can change it SHA hashed or is it something that needs to be done in the application itself? Thanks Jeevan > Date: Thu, 14 May 2015 16:12:41 -0500 > From: dwhite@cafedemocracy.org > To: jeev_biz@hotmail.com > CC: openldap-technical@openldap.org > Subject: Re: Openldap password problems > > On 05/14/15 21:02 +0000, jeevan kc wrote: > > > >Hello all,We've just noticed that when a user authenticates via LDAP, it ignores characters after the right password. For example a user jkc900 has Password Welcome1 But the user can type in Welcome1111 or Welcome12 etc and still can get into the application. Its just checking the first Welcome1 and they can type anything after that and still can log in. We've tested at least 50 users and they all have the same issues. Any clues/ solution for this? > >Your inputs are highly appreciated. > > Can you reproduce this with ldapwhoami? > > Is there a 3rd party PAM or NSS library involved in your authentication? > > -- > Dan White |