23 Oct
2008
23 Oct
'08
6:55 a.m.
Paul Lee wrote:
Hi all,
I use a 3rd party LDAP browser to browse the users that I created. I can see the userPassword clearly (plain text).
Is there any way to avoid this ?
http://www.openldap.org/faq/data/cache/320.html
When I use slapcat command to export to LDIF file, the userPassword field is encrypted, but why using 3rd party browser will show the password in plain text ?
It's not encrypted. The double colon behind 'userPassword' indicates that it's base64-encoded in the LDIF files. You MUST protect your LDIF export files!
Ciao, Michael.