Le 30 juin 09 à 11:13, Thomas Mortagne a écrit :
On Tue, Jun 30, 2009 at 09:49,
Reapepr<pbarnett(a)worth.org.uk> wrote:
The server does hash the passwords so that could be the issue,
though I had
thought the server would hash the incoming password request and
then compare
it.
Yes it's supposed to be LDAP server job to hash it before testing
except if you have a very specific server configuration, I always had
hashed paswords in openldap, apachds or activedirectory and never had
an issue. The clenat can't know which knd of hash the LDAP server is
using internally.
Yes I understand the architecture choice to lead to plain text pwd in
secured channels, and that's fine (clenat can't provide all past and
future hash mechanisms, neither the one to use with the connected
directory).
Nevertheless, I am using OpenLdap (slapd 2.4.11) with no specific
configuration, and nevertheless the ldap directiry does not hash the
plain text password sent :/
Would you have an idea on which specific option may prevent this
behavior, I can make some tests !
What does HTH mean?
--
View this message in context:
http://n2.nabble.com/LDAP-Authentication-and-Admin-Approval-tp3173539p31799…
Sent from the XWiki- Users mailing list archive at
Nabble.com.
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
--
Thomas Mortagne
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users