[Lias] Re: [OpenLDAP] - Some success

[Simon Bryan]

Ken Yap said:
>>After a lot of fiddling abd editing of files ....................
>>I can now ssh etc as one of the ldap users (provided they are a posix user wi
>>th a
>>shell!)
>>
>>It seems amazing the number of places you have to put the rootdn password in
>>cleartext!
>
> How many places? In the slapd.conf file you can SSHA it. You don't need
> the rootpw to do a DN bind, you can use the user's account or create an
> account that's allowed to bind.

After a bit more fiddling I find that it can SSHA'd everywhere except in the smbldap
tools config file: smbldap_conf.pm, and you don't seem to need ldap.secret.

-- 
Simon Bryan
IT Manager
OLMC Parramatta