Re: OpenLDAP as a SASL backend

5 Nov 2007


      On Monday 05 November 2007 13:20:04 Zohar Lev Shani wrote:
...
I understand now why I cannot put hashed userPassword when I use SASL. But,
does it mean that the ONLY place where I can use hashed passwords for
authentication is the rootpw directive in slapd.conf, or, there are more
sensible use cases where it can be used?
Uh, well, if you want to use SASL mechanisms that require a shared secret, 
obviously: no. If you want to use simple binds, then you can use a hashed 
userPassword. If you want to use other SASL mechanisms that support encrypted 
keys, mutual 3rd-party authentication - then you're not going to use 
userPassword at all ...
Regards,
Buchan

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

Re: OpenLDAP as a SASL backend