Dear gentleman,
i have installed openldap with sasl and ssl support. I am facing a
strange scenario:
Although i can do every operation with the rootdn/rootpwd in
/etc/ldap/slapd.conf i cannot log in with another DN.
I does not matter how i tried, using SASL or even simple bind on a dn.
What have realized that userPassword attribute type is changed from
what i feed ldapadd with my lidf file.
For instance: the entry from a ldif was:
dn: uid=sioux,ou=people,dc=ufv,dc=br
objectClass: account
objectClass: posixAccount
objectClass: top
cn: sioux
uid: sioux
uidNumber: 1000
gidNumber: 1000
homeDirectory: /home/sioux
userPassword: {SSHA}zK8OHcZn/Jz9Dj2ssRo4P8zY3uAD+5Ua
loginShell: /bin/sh
gecos: The root of all evil
But when i perform a command like:
sioux@centauro:~$ ldapsearch -x -LLL -D 'cn=admin,dc=ufv,dc=br' -W
'(uid=sioux)'
Enter LDAP Password:
dn: uid=sioux,ou=people,dc=ufv,dc=br
objectClass: account
objectClass: posixAccount
objectClass: top
cn: sioux
uid: sioux
uidNumber: 1000
gidNumber: 1000
homeDirectory: /home/sioux
userPassword:: e1NTSEF9eks4T0hjWm4vSno5RGoyc3NSbzRQOHpZM3VBRCs1VWE=
loginShell: /bin/sh
gecos: The root of all evil
sioux@centauro:~$
Realize that userPassword is totally diiferent from what is in the ldif file.
When i try to log:
sioux@centauro:~$ ldapsearch -x -LLL -D
'cn=sioux,ou=people,dc=ufv,dc=br' -W '(uid=sioux)'
Enter LDAP Password:
ldap_bind: Invalid credentials (49)
sioux@centauro:~$
May some one help me?