[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: passwords in ldap



Hello,

I am not sure wether I talk bullshit or wether your password is just an
example, but as far as I know {crypt} is not MD-5. For MD5 use {MD5}, though
I don´t know wether this referres to cram or digest.

At least, this would explain you invalid credentials, since "crypting" the
string produces a different output than MD-5ing it. If you want to be sure,
use slappasswd. It produces a "copy-an-paste" password.

----- Original Message -----
From: "Marcin Radecki" <marcinr@student.uci.agh.edu.pl>
To: <openldap-software@OpenLDAP.org>
Sent: Wednesday, July 04, 2001 2:46 PM
Subject: passwords in ldap


>
> Hi,
>
> My operating system is rh 6.2 with openldap-2.0.11.
> I've installed pam_ldap and nss_ldap modules.
>
> I have userPassword in LDAP {MD5} encoded like this:
>
> {crypt}$1$hTSiVQg/$EFqBihLO48dJxeN2aVdNb/
>
> and I can login successfully to system via pam_ldap module.
> But it doesn't work when I'm trying BIND to LDAP database
> as that (eg. myuser) user.
>
> ldapsearch -b "dc=com,dc=pl" -x -w password -D "uid=myuser,dc=com,dc=pl"
>
> responds with: ldap_bind: Invalid credentials
>
> Once password works, but in other case doesn't.
> Can anyone help me with this mystery?
>
> Marcin
>
>
>