Le 30 juin 09 à 11:13, Thomas Mortagne a écrit : > On Tue, Jun 30, 2009 at 09:49, Reapepr<[email protected]> wrote: >> >> The server does hash the passwords so that could be the issue, >> though I had >> thought the server would hash the incoming password request and >> then compare >> it. > > Yes it's supposed to be LDAP server job to hash it before testing > except if you have a very specific server configuration, I always had > hashed paswords in openldap, apachds or activedirectory and never had > an issue. The clenat can't know which knd of hash the LDAP server is > using internally.
Yes I understand the architecture choice to lead to plain text pwd in secured channels, and that's fine (clenat can't provide all past and future hash mechanisms, neither the one to use with the connected directory). Nevertheless, I am using OpenLdap (slapd 2.4.11) with no specific configuration, and nevertheless the ldap directiry does not hash the plain text password sent :/ Would you have an idea on which specific option may prevent this behavior, I can make some tests ! > > >> >> What does HTH mean? >> -- >> View this message in context: >> http://n2.nabble.com/LDAP-Authentication-and-Admin-Approval-tp3173539p3179961.html >> Sent from the XWiki- Users mailing list archive at Nabble.com. >> >> _______________________________________________ >> users mailing list >> [email protected] >> http://lists.xwiki.org/mailman/listinfo/users >> > > > > -- > Thomas Mortagne > _______________________________________________ > users mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/users _______________________________________________ users mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/users
