pam_ldap pam_password crypt option doesn't work...?
Berk Gulenler
gulenler at boun.edu.tr
Sun Oct 12 12:12:51 UTC 2008
Hi,
I'm trying to authenticate users from OpenLDAP. In LDAP userPassword
fields are crypted. So I'm trying to use "pam_password crypt" option in
ldap.conf.
But in LDAP log the the password data from pam_ldap module always is in
clear text. What could be wrong? Thanks in advance.
ldap.conf
host *host*
base ou=people,dc=boun.edu.tr,o=BU
ldap_version 3
binddn cn=root,o=BU
bindpw *password*
port 389
timelimit 30
bind_timelimit 30
pam_login_attribute uid
pam_password crypt
Service conf file
auth required /usr/local/lib/pam_ldap.so try_first_pass
I also tryed use_mapped_pass option, but it didn't worked.
LDAP log
ldap_read: want=60, got=60
0000: 01 03 04 2c 75 69 64 3d 74 65 73 74 2e 74 65 73
...,uid=test.tes
0010: 74 31 2c 6f 75 3d 70 65 6f 70 6c 65 2c 64 63 3d
t1,ou=people,dc=
0020: 62 6f 75 6e 2e 65 64 75 2e 74 72 2c 6f 3d 42 55
boun.edu.tr,o=BU
0030: 80 0a 79 61 67 6c 69 65 6b 6d 65 6b
..yagliekmek [clear text password]
ber_get_next: tag 0x30 len 66 contents:
pam_ldap version is 1.8.4
More information about the freebsd-questions
mailing list