--On Wednesday, August 02, 2017 6:28 PM -0400 David Magda dmagda@ee.ryerson.ca wrote:
Doing an "ldapsearch […] '(userpassword={SHA}*'" gets zero results.
Thanks for any info.
userPassword is base64 encoded, so no, you can't do that. You could find all the values, and then decode them. Or you could decode a specific value for a given user to see what sort of hash it is using. I'd probably use perl or python.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org