So I did more research and found that java or spring source has APIs for encrypting passwords and I could store the hashed value in openldap. If thats the case would LDPA server be able to retrive the password during bind?<div>
<br></div><div>And another interesting read is</div><div><br></div><div><a href="http://blogs.oracle.com/DirectoryManager/entry/the_ssha_password_storage_scheme">http://blogs.oracle.com/DirectoryManager/entry/the_ssha_password_storage_scheme</a></div>
<div><br></div><div>Is that true for OpenLDAP? Can I use similar algorithm for generating password? Or should password policy will suffice ?</div><div><br></div><div><br><div class="gmail_quote">On Tue, Sep 13, 2011 at 2:01 PM, sim123 <span dir="ltr">&lt;<a href="mailto:Sim3159@gmail.com">Sim3159@gmail.com</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hi All,<div><br></div><div>I am trying to store SSHA passwords in openldap instead of plain text via C code and wondering how this works. I tried exploring archives, FAQ etc and what I gathered from there is openLDAP has built in support for various password encryption algorithm however it does not have any APIs for generating passwords and password-has directive works with ldpapassword utility only. </div>

<div><br></div><div><a href="http://www.openldap.org/faq/data/cache/906.html" target="_blank">http://www.openldap.org/faq/data/cache/906.html</a></div><div><br></div><div>If I use some tool like Apache DS and modify my userPassword attribute to be SSHA instead of plain text it all works. I want to know how this works under the hood? Who is responsible for generating hashed passwords? If I generate it using some C routine how does LDAP Server retrieves it during the bind operation? I would really appreciate if there is any related documentation available.<br clear="all">

<div><br></div><div>Thanks for the help and support.</div>
</div>
</blockquote></div><br></div>