Niraj Kumar
Reputation: 11
disable plaintext password in ldap
I have a openldap server v3 that is storing passwords in plain text, is there anyway by which we can change the password to be stored in SSHA format by default. I use Apache DS to login to the directory tree and i see the user passwords in plaintext which in turn is a security keyhole for my firm. Please suggest as to how i enable forced SSHA password mechanism and turn of clear text.
Let me know if anyone needs more data from my side to answer this. Many thanx in advance.
Regards Niraj
Upvotes: 0
Views: 1865
Answers (1)
user207421
Reputation: 310980
Use the Password Policy overlay and specify hashing of plaintext passwords:
overlay ppolicy
ppolicy_hash_cleartext
Upvotes: 1
Related Questions
- How to disable LDAP password policy
- OpenLDAP Won't Set Encyrpted Password: attribute 'userPassword' is not present in entry
- Password encrypted in slapd.conf-File
- How to disable the property of password-generator in OpenDJ
- Is possible to configure OpenLDAP Crypt passwords without using a salt?
- Enable password hashing in OpenLDAP
- OpenLDAP - Saves userPassword as PlainText
- openldap auth with both option hashed as well as cleartext?
- How can I make password optional when using authlogic and LDAP authentication?
- How to avoid plain password in mod_ldap