Finally have this working without external scripts and hooks. Now we can sync hashes and skip the plaintext password nonsense.
All that was needed was to hack lsc to convert the string to a byte value, otherwise JNDI will not write binary values to LDAP. Hope this helps everyone with an environment, which doesnt necessarily conform to Clements standards. Regards, - Ben From: Benjamin Vogt [mailto:[email protected]] Sent: 07 November 2013 11:46 To: 'Natan Sanson'; 'Clément OUDOT' Cc: 'lsc-userslsc-users' Subject: RE: [lsc-users] unicodePwd :: double colon Thanks Natan, This is the kind of answer Ive been looking for. The question is then, what is the advantage of using lsc? I might as well write a bash script to do all the sync. - Ben From: Natan Sanson [mailto:[email protected]] Sent: 07 November 2013 11:39 To: Clément OUDOT Cc: Benjamin Vogt; lsc-userslsc-users Subject: Re: [lsc-users] unicodePwd :: double colon Can't you call via java a "shell command" that calls ldapmodify? Instead of synchornizing it via LSC. You can do it outisde of lsc creating the ldapmodify file and submitting it via shell command echo "Loading new password for $userdn" ldapmodify $LDAPOPTS <<-ENDLDIF dn: $userdn changetype: modify replace: unicodePwd unicodePwd:: $yourpassword ENDLDIF Just an idea to achieve your goal On Thu, Nov 7, 2013 at 11:35 AM, Clément OUDOT <[email protected]> wrote: 2013/11/7 Benjamin Vogt <[email protected]> You are talking about oranges and apples. Your solution is not viable, because I do not have the plaintext passwords. The double colon is the magic. Instead of providing me alternatives which do not work in my case, please help me get lsc to use a double colon. I think I have done my best. Good luck. Clément. _______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
