I plan to populate a new directory server using information in the
/etc/passwd (and related) files on a Digital Unix machine. The default
password encryption scheme on the directory server is SHA, but I noticed
that the userpassword attribute always begins with {SHA}, which led me
to believe I could do something like this in ldapmodify:
dn: uid=xxx,ou=people,dc=uah,dc=edu
changetype:modify
replace:userpassword
userpassword:{crypt}xxxxxxxxxxxxxx
where the string of x's is the encrypted password from the DEC Unix
machine. But when I do that then try to bind with the same clear-text
password as I have on the Unix box, it doesn't authenticate. Should
this work?
