So my client needs to understand SSHA encryption?
Did I understand that correct?

I have some really old clients that will only do DES.
(don't laugh)

Is there a way to change how which encryption algorithm it uses?

Gary




Rich Megginson wrote:
Gary Verhulp wrote:
This is what I ended up with.

# ttest, users, accounts, nes.edited.com
dn: uid=ttest,cn=users,cn=accounts,dc=nes,dc=edited,dc=com
displayName: Tim  Test
cn: Tim  Test
title: test User
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: inetUser
objectClass: posixAccount
objectClass: krbPrincipalAux
objectClass: radiusprofile
loginShell: /bin/bash
gidNumber: 1002
gecos: Tim  Test
sn: Test
homeDirectory: /home/ttest
uid: ttest
mail: tim.t...@nes.edited.com
krbPrincipalName: tt...@nes.edited.com
initials: TT
uidNumber: 1102
memberOf: cn=ipausers,cn=groups,cn=accounts,dc=nes,dc=edited,dc=com
krbPrincipalKey:: MIICaqADAgEBoQMCAQGiAwIBAqMDAgEApIICUjCCAk4wb6AiMCCgAwIBAKEZ BBdORVMuQ0hFQ0tQT0lOVC5DT010dGVzdKFJMEegAwIBEqFABD4gAPCg096xJRi1GCmdH+zCX/RPw 9yyZrMTcajwdhvCdba2IHXc3nCxerCCFG7EWTzE/BDNbQ1Lo+8ncpZdsDBfoCIwIKADAgEAoRkEF0 5FUy5DSEVDS1BPSU5ULkNPTXR0ZXN0oTkwN6ADAgERoTAELhAAmiazCloBWUy83FJWE++tGIJROXc DP/VRmEak0w3NFgKeKmFEj+Oq2uaftZ8wZ6AiMCCgAwIBAKEZBBdORVMuQ0hFQ0tQT0lOVC5DT010 dGVzdKFBMD+gAwIBEKE4BDYYANobnHqJtwdPVHJ/2xB7RAhubd/7x0AcT+tqepz0tKj8+cZZDVrWR eMpvaznEXBHqGIBnw8wX6AiMCCgAwIBAKEZBBdORVMuQ0hFQ0tQT0lOVC5DT010dGVzdKE5MDegAw IBF6EwBC4QAJY308SqY0/KJW0RCqHokmtmETV8kp1vOvd6kCxO0FZzRaXRKiBeJ/lqqqplMFegIjA goAMCAQChGQQXTkVTLkNIRUNLUE9JTlQuQ09NdHRlc3ShMTAvoAMCAQihKAQmCACaTs3yqOZQsdi1 0+H8+jPdbkC1RU2VoHvwdRMnP7wt+sfmBTowV6AiMCCgAwIBAKEZBBdORVMuQ0hFQ0tQT0lOVC5DT 010dGVzdKExMC+gAwIBA6EoBCYIAExPRjZpLwlGTj9cISvbxi3jsVv6g1jy7tlxanAoFd8Y/6fs+w
 ==
krbLastPwdChange: 20091006002554Z
krbPasswordExpiration: 20091006002554Z
userPassword:: e1NTSEF9NmdQbGR5VWsxMmpuV3lraFYvZEEzdURQSEc3YUN0UkpBam9YVnc9PQ=
 =
userPassword: {SSHA}6gPldyUk12jnWykhV/dA3uDPHG7aCtRJAjoXVw==

givenName: Tim


Rob Crittenden wrote:
garyv wrote:
Again, I appreciate your help.


seemingly my lidf perhaps was not loaded correctly.
I see no userPassword attribute.
You need to bind as Directory Manager to show the userPassword attribute
for everyone.

ldapsearch -x -D "cn=directory manager" -W -b "dcc=nes,dc=edited,dc=com"
   "* userPassword"

rob


_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users


------------------------------------------------------------------------

_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to