|
Hi All,
I am trying to get my web application to interface
with my LDAP Server for user authentication. I am pretty new to LDAP so if
please any guidance on this is greatly appreciated. I have a few questions that
I really need help, these are
1. I try to avoid to use clear text password for my
rootpw defined in the slapd.conf file, I try to use ldappasswd to encrypt it but
I have not luck, could someone provide me some examples on how to use this
utility.
2. Since my main objective is to store the user
information including user id and password for my web-based client
authentication, I then create a simple LDAP directory which contain the
following information. My question is that is it the right way to define my user
authentication directory ??? Should I use the existing objectclass and the
corresponding attributes such as userpassword or I should define my own
objectclass and attributes???
After loading my example.ldif into LDAP database
using ldapadd command, my clear-text password got encrypted (I am not which
encryption). For instance, my uid=johns with userpassword=foo is encrypted into
DKSJFL. In that case, how do I authenticate the user-entered password with the
password store in the LDAP database. I am using Java JNDI to access to my LDAP
Server right now. Should I use the SEARCH operation to fetch out my password and
decrypt (????which decryption should I use) for a given user id and then compare
the two strings....Is it the most optimal way to this ??????
Thanks in advance for all your
help....
# Organization for NetZero Corporation
#dn: o=example, c=US #objectclass: top #objectclass: organization #o: example # Organizational Unit for NetZero
Corporation
#dn: ou=People, o=example, c=US #objectclass: top #objectclass: organizationalUnit #ou: People # People in the Organization Unit
dn: uid=johns, ou=People, o=example, c=US objectclass: top objectclass: organizationalPerson objectclass: inetOrgPerson cn: smith sn: john givenname: john uid: johns ou: People userpassword: bar |