2014-07-04 14:57 GMT+02:00 Rogério Augusto Rondini <rarondini.paradygma@gmail.com>:
Hi folks,

I need to implement password sync between AD and OpenLDAP using an IDM tool.

I want to know how to capture clear text password in OpenLDAP before encryption so that I can sync with AD and potentially with others user repositories.


Hi,

we have the same need with LSC (http://lsc-project.org) but the only way for now is to store a symmetric crypt password in a separate field, and decrypt it on the fly when doing synchronization to other directories.

 See http://lsc-project.org/wiki/documentation/howto/activedirectory#password_synchronization

Clément.