Your LDAP directory's management interface may use a different hashing
algorithm than jetspeed is using. For example, SunOne typically uses
SHA encoding.
The passwords you create from jetspeed should work when using jetspeed
to authenticate because the same hashing algorithm will be used when
computing the password for creation and authentication.
If you wish to use a different algorithm in jetspeed, look at
org.apache.jetspeed.security.spi.impl.LdapCredentialHandler in the
jetspeed source under components/security/src/java.
You could write your own implementation and then substitute out this
one in the ldap security-spi-atn.xml assembly configuration.
On 7/13/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Yes I created user from jetspeed , but when I change password attribute
directly in LDAP to some hash (eg. md5 - {md5} xxxxxxxxxxxx )
autentification don't work with this password , if it is possible write me
please how to tell jetspeed to use encrypted passwords in LDAP.
Thanks
> You are using J2 to create users in your LDAP directory and the
> passwords created are not encrypted (actually, they are one-way
> hashed).
>
> On 7/12/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
>> Hmm than interesting is that passwords in my LDAP server are unencrypted .
>> Can you tell me where I can choose encryption ???
>> Thanks
>> Marian Schmotzer
>> > The default behaviour is to encrypt. I can't recall if it is SHA or
>> > MD5, but all you need to do is provide a custom implementation of
>> > org.apache.jetspeed.security.spi.CredentialPasswordEncoder and swap it
>> > in the security-spi-atn.xml assembly file...
>> >
>> >
>> >
>> > On 7/11/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
>> >> Hi everyone
>> >>
>> >> Is it possible to encrypt jetspeed passwords stored in LDAP ??? I
want to
>> >> use MD4 encryption(i want to import user passwords from ADS)
>> >>
>> >> Many thanks
>> >> Marian Schmotzer
>> >>
>> >>
>> >>
>> >>
>> >>
>> >> ---------------------------------------------------------------------
>> >> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> >> For additional commands, e-mail: [EMAIL PROTECTED]
>> >>
>> >>
>> >
>> > ---------------------------------------------------------------------
>> > To unsubscribe, e-mail: [EMAIL PROTECTED]
>> > For additional commands, e-mail: [EMAIL PROTECTED]
>> >
>> >
>>
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
