The passwords you are adding with this ldapadd are stored clear text. Whenever ldapsearch prints 2 colons, it's letting you know it's base64 encoding it's output. If you base64 decode the hash that your search output shows, you get your password: $ echo cGFzc3dvcmQ= | base64 -d password
-Shawn On Wed, 27 Mar 2002, Michael S. McCollough wrote: > I am using: > ldapadd -h localhost -D "cn=manager,dc=uchub,dc=com" -W -f adduser.ldif -x > > This is what the file contains > [root@radius migration]# cat /adduser.ldif > dn: uid=me,ou=People,dc=uchub,dc=com > uid: me > cn: Test Account > objectClass: account > objectClass: posixAccount > objectClass: top > objectClass: shadowAccount > userPassword: password > shadowLastChange: 11764 > shadowMax: 99999 > shadowWarning: 7 > loginShell: /bin/bash > uidNumber: 508 > gidNumber: 509 > homeDirectory: /home/testme2 > gecos: Test Account,Test Inc.,xxx-xxx-xxxx, > > > This is what is imported. > Output of ldapsearch is: > # me,People,dc=uchub,dc=com > dn: uid=me,ou=People,dc=uchub,dc=com > uid: me > cn: Test Account > objectClass: account > objectClass: posixAccount > objectClass: top > objectClass: shadowAccount > userPassword:: cGFzc3dvcmQ= > shadowLastChange: 11764 > shadowMax: 99999 > shadowWarning: 7 > loginShell: /bin/bash > uidNumber: 508 > gidNumber: 509 > homeDirectory: /home/testme2 > gecos: Test Account,Test Inc.,xxx-xxx-xxxx, > > # search result > search: 2 > result: 0 Success > > # numResponses: 176 > # numEntries: 175 > [root@radius migration]# > > -----Original Message----- > From: pavesi [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, March 27, 2002 12:15 AM > To: [EMAIL PROTECTED] > Subject: RE: CHAP-Password & LDAP Auth? > > > > >Can some tell me how to override the storing of encrypted passwords? > > This is a function of how you are, or the routine that enters the user data > into your ldap database is defined. Define as crypt, it goes in encrypted. > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > Shawn K. O'Shea Sr. Unix Administrator DSL.net, Inc. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
