[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Openldap password problems



[craig.white@ldp002wsoin99 ~]$ slappasswd -h {SSHA}

New password:

Re-enter new password:



Use ldapmodify to change the password similar to this above. Use whatever application you are using to set passwords and change to SSHA as default if possible.


Craig White

System Administrator

O 623-201-8179   M 602-377-9752




SkyTouch Technology     4225 E. Windrose Dr.     Phoenix, AZ 85032


From: openldap-technical [mailto:openldap-technical-bounces@openldap.org] On Behalf Of jeevan kc
Sent: Thursday, May 14, 2015 2:34 PM
To: Quanah Gibson-Mount; openldap-technical@openldap.org
Subject: RE: Openldap password problems


Openldap version is 2.4.30. When I check the configuration inside cn=config  I found this


[root@lap00617 cn=config]# cat olcDatabase={-1}frontend.ldif

dn: olcDatabase={-1}frontend

objectClass: olcDatabaseConfig

objectClass: olcFrontendConfig

olcDatabase: {-1}frontend

olcAddContentAcl: FALSE

olcLastMod: TRUE

olcMaxDerefDepth: 0

olcReadOnly: FALSE

olcSchemaDN: cn=Subschema

olcSizeLimit: 1500

olcSyncUseSubentry: FALSE

olcMonitoring: FALSE

olcPasswordHash: {CRYPT}



Should I change this CRYPT to SSHA ? Thanks, Quanah 




> Date: Thu, 14 May 2015 14:27:19 -0700
> From: quanah@zimbra.com
> To: jeev_biz@hotmail.com; openldap-technical@openldap.org
> Subject: RE: Openldap password problems
> --On Thursday, May 14, 2015 10:15 PM +0000 jeevan kc <jeev_biz@hotmail.com>
> wrote:
> >
> > Thanks Quanah, It shows up as crypt hashed. Is there any way I can change
> > it to SHA hashed ?
> OpenLDAP defaults to using SSHA, so your configuration must have changed
> that to using crypt. I'd suggest modifying your configurations to default
> back to SSHA (I personally use SSHA-512 these days with the sha2 contrib
> module).
> You don't note your OpenLDAP release, which would also be useful
> information.
> --Quanah
> --
> Quanah Gibson-Mount
> Platform Architect
> Zimbra, Inc.
> --------------------
> Zimbra :: the leader in open source messaging and collaboration