[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Hashing the userPassword

To: openldap-technical@openldap.org
Subject: Re: Hashing the userPassword
From: Buchan Milne <bgmilne@staff.telkomsa.net>
Date: Wed, 4 Apr 2012 11:14:46 +0200
Cc: Michael Ströder <michael@stroeder.com>, Suneet Shah <suneetshah2000@gmail.com>
In-reply-to: <4F7BEF20.50909@stroeder.com>
References: <CABtBcwACJ=rp=4kQGzrRuhnjaeHrdUsnm6y3NEWfbeFgv_qd9Q@mail.gmail.com> <4F7BEF20.50909@stroeder.com>
User-agent: KMail/1.13.7 (Linux/2.6.38.8-desktop-9.mga; KDE/4.6.5; x86_64; ; )

On Wednesday, 4 April 2012 08:50:08 Michael Ströder wrote:
> Suneet Shah wrote:
> > I am creating a user in OpenLDAP using Java. The user is being
> > successfully created, but the passwords are being stored in clear text.
> 
> How do you set the password? If you send attribute userPassword along when
> creating the user's entry with a AddRequest you have to perform the
> password hashing at the client's side.

Or you can (ab)use ppolicy, with the option 'ppolicy_hash_cleartext'

Regards,
Buchan

References:
- Hashing the userPassword
  - From: Suneet Shah <suneetshah2000@gmail.com>
- Re: Hashing the userPassword
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Hashing the userPassword
Next by Date: Re: centralized sudo policies : ACL issue
Index(es):
- Chronological
- Thread