[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: forgotten rootdn psw

To: "Francis, Steve (IHG)" <Steve.Francis@ihg.com>
Subject: Re: forgotten rootdn psw
From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
Date: Tue, 6 Apr 2010 13:59:00 +0100
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <C595E25CD30F3F4192918C5DFE51625951D901@HNATLD1SVREXG09.Amer.Corp.Local>
References: <C595E25CD30F3F4192918C5DFE51625951D901@HNATLD1SVREXG09.Amer.Corp.Local>
User-agent: Mutt/1.5.17 (2007-11-01)

On Tue, Apr 06, 2010 at 08:06:23AM -0400, Francis, Steve (IHG) wrote:

> ok...So i'm an ID10T!!  LOL.  But seriously, I setup an OpenLdap server
> and migrated /etc/passwd to it, and all is well: however, I did that
> months ago, and you guessed it, somehow I'm having a "senior" moment,
> and can't remember the psw for the rootdn, so that I can add another
> user to the Ldap server. I'm sure there is probably a way to decode the
> "hashed/encrypted" password.  Any help would be greatly appreciated.  I
> really don't want to have to delete everything and start again, but if
> that's what I must do, then so be it.

There is no way to decrypt the hashed password short of doing a
brute-force dictionary attack on it. That is the whole point of
hashing it.

You do not need to delete the data. Just generate a new hashed
password (use slappasswd) and put it into the slapd.conf file with a
text editor. Restart slapd and all is well.

Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|     http://www.skills-1st.co.uk/                +44 1628 782565     |
-----------------------------------------------------------------------

References:
- forgotten rootdn psw
  - From: "Francis, Steve (IHG)" <Steve.Francis@ihg.com>

Prev by Date: Re: Partial replication
Next by Date: Re: forgotten rootdn psw
Index(es):
- Chronological
- Thread