invalid credentials when userPassword hash in SSHA-512

16 Jul 2020


      Hello
I realized that userPassword in my openldap directory cannot be validated when hashed in SSHA-512 
ldapsearch binds fails (err 49) , shibboleth SSO binding against ldap userPassword also fails 
I tried to check the cleartext password against the userPassword field with ApacheDirectoryStudio , here it works . 
I changed the password (reseeting the same cleartext one) using SSHA-256 (again in ApacheDirectoryStudio interface) , then ldapsearch bind works !
Is there a problem with SSHA-512 hashed userPassword ? Maybe something one the client or server side must be set to use SSHA-512 ?
Thanks for your advices .

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

invalid credentials when userPassword hash in SSHA-512