[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: openldap sasl digest-md5



I am using 2.1.17 and I am following what is on that sasl.html page:  

To use secrets stored in the LDAP directory, place plaintext passwords in
the userPassword attribute. It will be necessary to add an option to
slapd.conf to make sure that passwords changed through LDAP are stored in
plaintext:

       password-hash   {CLEARTEXT}

jk




-----Original Message-----
From: Igor Brezac [mailto:igor@ipass.net]
Sent: Wednesday, April 30, 2003 2:05 PM
To: Justin Kay
Cc: openldap-software@OpenLDAP.org
Subject: Re: openldap sasl digest-md5



On Wed, 30 Apr 2003, Justin Kay wrote:

> Ok.
>
> Question for you:  I am able to use sasl digest-md5 if I have the sasldb
> setup with a username.  However, I want to have it use the password in the
> directory instead and I can't seem to make it work.  When I delete the
> sasldb2, and try to do a search again with the same user it tells me that
> the user isn't in the database, which makes sense because I just deleted
the
> database, but I thought that it was then supposed to search for that user
> and password in the directory instead of the sasldb2 file.  Can anyone
point
> me in the right direction?  Am I missing something in the configuration?
>

I assume you are using a fairly recent version of openldap 2.1, hopefully
2.1.17.  If so, please  see http://www.openldap.org/doc/admin21/sasl.html

Hope this helps.

-- 
Igor