On Thu, 2004-12-23 at 16:59 -0600, Ben Beuchler wrote:> I have a dovecot installing working quite well for around 1000 users using
> passwd-file authentication. I'm moving to LDAP and would sure love to
be
> able to migrate the existing MD5 passwords.
>
> I've tried using ldapmodify to set "userPassword" to
> {CRYPT}$1$H8JE0k5X$y.ptShgYbOgWF.99lX88N1
> and
> {MD5}$1$H8JE0k5X$y.ptShgYbOgWF.99lX88N1
>
> In both cases, ldapmodify exits without errors but I cannot bind using the
> new password.
I don't know about CRYPT, but OpenLDAP expects {MD5} to be base64
encoded MD5 sum of the password. You are giving it MD5crypt encrypted
password which is entirely different. It shouldn't begin with $1$.
Dovecot should be able to handle the {MD5} right, though.. But Dovecot
doesn't support auth binds anyway.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20041228/5d7eeb0d/attachment-0001.bin>