[NTLUG:Discuss] OpenLDAP
Chris J Albertson
alb at chrisalbertson.com
Fri Apr 4 15:04:22 CST 2003
I'm talking about the rootpw parameter in the slapd.conf file. (Mine lives in
/etc/openldap)
You're on the right track using slappasswd. Using slappasswd -s <password>
doesn't actually set the password. It just generates an encrypted password which
you can then plug into the slapd.conf file for the rootpw parameter. This is
much more secure than a cleartext password.
For instance:
slappasswd -s secret
generates:
{SSHA}JPxfuM/UXkTeeD5JgF7RlWaeJVZ4dkPz
You then put that into the rootpw of the slapd.conf file:
rootdn "cn=Manager, dc=multicam, dc=com"
rootpw {SSHA}JPxfuM/UXkTeeD5JgF7RlWaeJVZ4dkPz
At this point, issuing the ldapadd command with -W and -x, along with the -D of
"cn=Manager, dc=multicam, dc=com" will prompt you for the password of secret. It
should then read the ldif formatted file specified by the -f parameter.
I hope this helps.
--
Chris Albertson
Owner - ChrisAlbertson.com (Actually, I rent, with an option to buy)
*Attached is a PGP signature file. You can find my public key at wwwkeys.pgp.net.*
Quoting Richard Humphrey <richard at multicam.com>:
[snip]
I'm assuming you've changed the password in the config file.
[snip]
Well i ran slappasswd -s and added a new password. Is there anything else I
should do?
Richard
_______________________________________________
https://ntlug.org/mailman/listinfo/discuss
-------------------------------------------------
This email was sent from www.chrisalbertson.com
using the IMP mailing program, part of the Horde suite
of information management tools.
http://horde.org/
More information about the Discuss
mailing list