Hi Dan, We use a web application to rest user password and when a password is reset it shows up as crypt hashed in userPassword attribute. Any way I can change it SHA hashed or is it something that needs to be done in the application itself? Thanks
Jeevan > Date: Thu, 14 May 2015 16:12:41 -0500 > From: [email protected] > To: [email protected] > CC: [email protected] > Subject: Re: Openldap password problems > > On 05/14/15 21:02 +0000, jeevan kc wrote: > > > >Hello all,We've just noticed that when a user authenticates via LDAP, it > >ignores characters after the right password. For example a user jkc900 has > >Password Welcome1 But the user can type in Welcome1111 or Welcome12 etc and > >still can get into the application. Its just checking the first Welcome1 and > >they can type anything after that and still can log in. We've tested at > >least 50 users and they all have the same issues. Any clues/ solution for > >this? > >Your inputs are highly appreciated. > > Can you reproduce this with ldapwhoami? > > Is there a 3rd party PAM or NSS library involved in your authentication? > > -- > Dan White
