[ILUG] Moving authentication to LDAP
Mel
mel at csn.ul.ie
Thu Jan 31 16:41:01 GMT 2002
On Thu, 31 Jan 2002, Martin Feeney wrote:
> OK. I just did something similar. I left it as {crypt}, didn't bother
> base64 encoding. Iadded the user to my ldap database (and removed it from
> /etc/passwd) then I logged in with the old password just fine.
>
hmmm, another bit of rooting around indicated that passwords on one
machine do not necessarily work on another machine. I think thats the
problem I'm running into where different crypts are been used
> If the userPassword starts with $1$ then it's an md5, but setting the
> scheme to {crypt} means ldap will use the crypt(3) function to compare
> passwords - this recognises the $1$ as signifying md5 and the next 8
> chars as the salt.
>
I'll mess around with the different values of password-hash and see does
it produce anything
> To give some examples (I don't have SASL set up yet):
>
ok, I'll look into it. For the most part I have what you've had except
ldapsearch tells me to go away so at least I know it's something with the
password hash. Thanks for the help
--
Mel
More information about the ILUG
mailing list