Re: [Ltb-users] OpenLDAP-LTB Password Hash

Borresen, John - 0444 - MITLL Tue, 23 Feb 2016 12:17:13 -0800

Thanks Clemont


Question:  just loading the Module is not going to implement the pw-sha2,
dont I have to create an olcOverlay, on the dbases?

 

Thanks,

 

John D. Borresen (Dave)

Email: john.borre...@ll.mit.edu

 

From: ltb-users-boun...@lists.ltb-project.org
[mailto:ltb-users-boun...@lists.ltb-project.org] On Behalf Of Clément OUDOT
Sent: Tuesday, February 23, 2016 3:39 AM
To: ltb-users@lists.ltb-project.org
Subject: Re: [Ltb-users] OpenLDAP-LTB Password Hash

 

 

Le 22/02/2016 21:10, Borresen, John - 0444 - MITLL a écrit :

We have a directive to stop using SHA-1 Password Hash Formats.  We are using
OpenLDAP 2.4.40 from the LDAP Tool Box (LTB).  

 

I read http://www.openldap.org/faq/data/cache/1467.html, that Since
OpenLDAP 2.4.32 SHA-2 algorithms are supported by the overlay slapo-pw-sha2
which is found under the contrib/ and has to be built separately.

 

Has that overlay been included in the LTB build?  If so, how can I implement
it?

 


Hi John,

yes, as written here, SHA2 is included in LTB packages:
http://ltb-project.org/wiki/documentation/openldap-rpm

This is a module, so you just need to load it (olcModuleLoad: pw-sha2.la).






-- 
Clément OUDOT
Consultant en logiciels libres, Expert infrastructure et sécurité
Savoir-faire Linux

smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
ltb-users mailing list
ltb-users@lists.ltb-project.org
http://lists.ltb-project.org/listinfo/ltb-users

Re: [Ltb-users] OpenLDAP-LTB Password Hash

Reply via email to