sam wrote:
Hi Gibson,
Thank you for your response. How can I build Openldap with MD5 support? Would the following make options work?
Quanah's post leapt to a premature conclusion. You should first check to see if using quotes works "{MD5}" since curly brackets are special in most command shells.
And of course, you should pay attention to the docs since the slappasswd(8) manpage already warns you that quotes will probably be needed.
--enable-modules --enable-crypt
Thanks Sam
Quanah Gibson-Mount wrote:
--On Sunday, June 20, 2010 11:20 AM +1000 samsam@ip6.com.au wrote:
Hi,
With the following setup:
hometest:openldap # uname -a FreeBSD hometest.ip6.com.auhttp://hometest.ip6.com.au 8.1-RC1 FreeBSD 8.1-RC1 #0: Fri Jun 18 15:26:58 EST 2010 root@hometest.ip6.com.au:/usr/ obj/usr/src/sys/mail.db.java.portal i386 hometest:openldap # pkg_info | grep -i ldap openldap-sasl-client-2.4.22 Open source LDAP client implementation with SASL2 support openldap-sasl-server-2.4.22 Open source LDAP server implementation hometest:openldap # pkg_info | grep -i db db46-4.6.21.4 The Berkeley DB package, revision 4.6 hometest:openldap # pkg_info | grep -i sasl cyrus-sasl-2.1.23 RFC 2222 SASL (Simple Authentication and Security Layer) cyrus-sasl-saslauthd-2.1.23 SASL authentication server for cyrus-sasl2 openldap-sasl-client-2.4.22 Open source LDAP client implementation with SASL2 support openldap-sasl-server-2.4.22 Open source LDAP server implementation
I can't create password for ldap: hometest:openldap # slappasswd -h {MD5} -s password Password generation failed for scheme MD5: scheme not recognized
It wasn't built with MD5 support. If it is, it works:
[zimbra@freelancer ~]$ /opt/zimbra/openldap/sbin/slappasswd -h {MD5} -s blah {MD5}bx7QAqtVlYWQFOvwlRUi2Q==
hometest:rc.d # ./slapd start Starting slapd. ./slapd: WARNING: failed to start slapd
Run slapd -d -1 to see why it failed to start.
--Quanah