-------- Original-Nachricht -------- Datum: Wed, 13 Dec 2006 15:25:56 +0100 Von: "Ralph Rößner" <[EMAIL PROTECTED]> An: Adam Williams <[EMAIL PROTECTED]> Betreff: [ldap] Re: Still Lost On SASL Documentation
> To clarify one point: > > On Tue, Dec 12, 2006 at 12:51:27PM -0500, Adam Williams wrote: > > > User Agent ---- zope site ---- LDAP [...] > The starting point of this discussion was how to use SASL authentication > in OpenLDAP because Digest-MD5 or some such authentication mechanism was > desired. To my knowledge, you just can't keep the required secrets for > that in the DIT. You would have to fall back to password authentication. > Thus we arrive at the admittedly insane situation of keeping accounts in > the DIT but secrets for authentication in an external file (which needs > to be managed somehow). No. For Digest-MD5 authentication you can keep the userpassword in the DIT, but it has to be cleartext. -Dieter --- You are currently subscribed to [email protected] as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
