HI Suomi
Yes, but I need all this for my Cisco router where I can't do any pre encryption - the password is sent for compaction in clear text so I need to make that compare to return true if the password is correct. Can I setup ldap to store the password in different format ?
Best, Szilard Gyorgy
-----Original Message----- From: openldap-technical-bounces@OpenLDAP.org [mailto:openldap-technical-bounces@OpenLDAP.org] On Behalf Of anax Sent: Wednesday, February 15, 2012 2:14 PM To: openldap-technical@openldap.org Subject: Re: authentification issue with clear text password
Hi Szilard your PW is SSHA encoded:
base64 -d e1NTSEF9L0NFMERQNTVtOU82T09HK1AzQVdNZG9nU2x6Z0FwTGw= {SSHA}/CE0DP55m9O6OOG+P3AWMdogSlzgApLl
SSHA encode the value you wanna compare and then compare it.
suomi
On 02/15/2012 12:38 PM, Szilard Gyorgy wrote:
HI
Can anybody help me with the next issue ?
ldapcompare -D "uid=testuser,ou=Users,dc=domain,dc=net" -w test "uid=testuser,ou=Users,dc=domain,dc=net" -v userPassword:test
ldap_initialize( <DEFAULT> )
DN:uid=testuser,ou=Users,dc=domain,dc=net, attr:userPassword, value:test
Compare Result: Compare False (5)
*FALSE*
BUT
ldapcompare -D "uid=testuser,ou=Users,dc=domain,dc=net" -w test "uid= testuser,ou=Users,dc=domain,dc=net" -v userPassword::e1NTSEF9L0NFMERQNTVtOU82T09HK1AzQVdNZG9nU2x6Z0FwTGw=
ldap_initialize( <DEFAULT> )
DN:uid= testuser,ou=Users,dc=domain,dc=net, attr:userPassword, value::e1NTSEF9L0NFMERQNTVtOU82T09HK1AzQVdNZG9nU2x6Z0FwTGw=
Compare Result: Compare True (6)
*TRUE*
I know that the problem is not with ldapcompare but I can't figure our where it is.
Thank You,
Szilard Gyorgy