22 Apr
2025
22 Apr
'25
3:44 p.m.
--On Tuesday, April 22, 2025 2:07 PM +0000 "Windl, Ulrich" u.windl@ukr.de wrote:
Hi!
Using OpenLDAP 2.5 from SLES15 SP6 I added "olcPasswordHash: sha256" ("olcPasswordHash: {sha256}") to cn=config (I wanted to add it to the {-1}frontend database, but slapd refused.
I was able to set {SHA256} RootPWs, but now when I try slapcat, I get an error saying:
Is it my error, or slapcat's?
If you didn't add pw-sha2 as a moduleload to the server configuration, then it would be your error, and based on the output, that appears to be the case. I would additionally note that it's a very bad idea to use SHA256, SSHA256 would be significantly better since then it is salted.
--Quanah