[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Userpasswords stored in plain text

To: openldap-technical@openldap.org
Subject: Re: Userpasswords stored in plain text
From: Dieter KlÃnter <dieter@dkluenter.de>
Date: Wed, 6 Mar 2013 11:53:49 +0100
In-reply-to: <SNT002-W144D6DE190A2C7E3CADD87FDAE40@phx.gbl>
Organization: AVCI
References: <SNT002-W144D6DE190A2C7E3CADD87FDAE40@phx.gbl>

Am Wed, 6 Mar 2013 09:58:40 +0000
schrieb arantza serrano <zazu2276@hotmail.com>:

> Hello,
>  
> I need that the userpasswords are stored hashed. I have configured
> the slapd.conf file with this option:
> 
> password-hash {SSHA}
>  
> But when I add users with ldapadd command, I pass the values of
> userpassword in plain text. Like this: 
> 
> /opt/openldap/bin/ldapadd -x -D "root_dn" -w pass_dn << _EOF
> dn: uid=usu3,ou=users,o=my_organization
> uid: usu2
> objectClass: top
> objectClass: person
> objectClass: organizationalperson
> objectClass: inetorgperson
> cn: my_cn
> sn: my_sn
> mail: my_mail@mydomain.com
> userPassword: usuario
> _EOF
[...]

If you add a new entry, create the password hash by mean of
slappasswd(8), if you want to modify a user password, use ldappasswd(1).

-Dieter

-- 
Dieter KlÃnter | Systemberatung
http://dkluenter.de
GPG Key ID:DA147B05
53Â37'09,95"N
10Â08'02,42"E

References:
- Userpasswords stored in plain text
  - From: arantza serrano <zazu2276@hotmail.com>

Prev by Date: Re: Userpasswords stored in plain text
Next by Date: FW: Userpasswords stored in plain text
Index(es):
- Chronological
- Thread