Hi guys,
I'm having issues trying to setup multiple databases with different password hash algos.
My first db has to have plaintext passwords and I'm using
password-hash {CLEARTEXT} overlay ppolicy ppolicy_hash_cleartext
and my second one needs to use SHA for password hash. I have it like this in slapd.conf
password-hash {SHA} overlay ppolicy ppolicy_hash_cleartext
When I insert user in ldap via ldapadd it stores plaintext password for that user in userPassword attribute.
Can I have different password-hash directives for each database? Or my ppolicy overlay doesn't work.
Thanks in advance.
BR,
Kreso
--On Tuesday, November 3, 2020 5:30 PM +0100 Kresimir Petkovic kresimir.petkovic@gmail.com wrote:
password-hash {CLEARTEXT}
As documented in slapd.conf(5), this is a GLOBAL configuration option that applies to all databases. You'd need to set up two different slapd instances for this case.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org
-
Kresimir Petkovic -
Quanah Gibson-Mount