[Date Prev][Date Next] [Chronological] [Thread] [Top]

Why ldap sasl digest-md5 only works for clear password?

To: openldap-software@OpenLDAP.org
Subject: Why ldap sasl digest-md5 only works for clear password?
From: Ming Deng <mingd@oeone.com>
Date: Tue, 29 Apr 2003 14:02:25 -0400
Organization: OEone Corporation
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030225

Rpm version: openldap 2.1.16

I want to authenticate users again ldap server with Digest-MD5 SASL mechanism. If I store user password in clear text format in userPassword attribute of ldap directory, it works fine. But if I store the password in any hashed format. e.g. MD5, SHA, it will fail with: ldap_sasl_interactive_bind_s: Invalid credentials (49) additional info: SASL(-13): authentication failure: client response doesn't match what we generated

Thanks,

Ming

Follow-Ups:
- Re: Why ldap sasl digest-md5 only works for clear password?
  - From: Michael Bartosh <mbartosh@4am-media.com>

Prev by Date: migration issue
Next by Date: help with groups?
Index(es):
- Chronological
- Thread