robert rottermann wrote:
Hi there,
I installed LDAP on my SuSe 10.3 box.
I changed the configuration in /etc/openldap/slapd.conf
to contain the following:
####################################################################### # BDB database definitions #######################################################################
database bdb suffix "dc=redcor,dc=ch" checkpoint 1024 5 cachesize 10000 rootdn "cn=Manager,dc=redcor,dc=ch" ^^^^^^^ # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw secret
now I would like to use the administrator account like so: ldapsearch -D "cn=Admin,dc=redcor,dc=ch" -x -w secret -h localhost ^^^^^ Admin != Manager
<snip>
before I used the cleartext password I tried using an encripted password which I generated with:
slappasswd -h {md5}.
^^^^^ see man slappasswd: -h scheme If -h is specified, one of the following RFC 2307 schemes may be specified: {CRYPT}, {MD5}, {SMD5}, {SSHA}, and {SHA}. The default is {SSHA}. Note that scheme names may need to be protected, due to { and }, from expansion by the user's command interpreter. {SHA} and {SSHA} use the SHA-1 algorithm (FIPS 160-1), the latter with a seed. {MD5} and {SMD5} use the MD5 algorithm (RFC 1321), the latter with a seed. {CRYPT} uses the crypt(3). {CLEARTEXT} indicates that the new password should be added to userPassword as clear text. You will need to include {MD5} in front of the hash in the slapd.conf file. -- David C. Rankin, J.D., P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org