Hello,
I want to change the default 'secret' password in the slapd.conf file to something that's encrypted in some way to hide the clear text password for the Manager account. What's the best and easiest way to go about doing this? Is slappasswd the way to not only do this but change passwords for any users in the database, or is ldappasswd the way to go?
One other question - does anyone have an example slapd.conf file that uses the /etc/passwd and /etc/shadow files to manage the passwords for openldap, particularly for the Manager account?
Thank you for your help!
Mike
----- "Mike Simonton" mike.simonton@promptutech.com wrote:
Hello,
I want to change the default ‘secret’ password in the slapd.conf file to something that’s encrypted in some way to hide the clear text password for the Manager account. What’s the best and easiest way to go about doing this? Is slappasswd the way to not only do this but change passwords for any users in the database, or is ldappasswd the way to go?
slappasswd is used to create an encrypted password for storing in slapd.conf and/or slapd.d
A user entry password i.e. userPassword can be changed many ways. ldappasswd is one way.
One other question – does anyone have an example slapd.conf file that uses the /etc/passwd and /etc/shadow files to manage the passwords for openldap, particularly for the Manager account?
If you mean centerally storing user passwords etc. this is what pam_ldap is for.
pam_ldap will use the PAM framework on a machine to authenticate users against a directory server.
Thanks.
openldap-technical@openldap.org
-
Gavin Henry -
Mike Simonton