Re: auxprop pwcheck with sasl ldapdb and openldap backend not working

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


--On Saturday, November 6, 2021 9:45 PM +0100 Dieter Klünter <dieter@xxxxxxxxxxxx> wrote:

Am Thu, 04 Nov 2021 07:46:17 +0200
schrieb Дилян Палаузов  <dilyan.palauzov@xxxxxxxxx>:

Hello Patrick,

I propose you make first a working setup with sasldb-backend.  This is
a local database with username@domain:password.  Once it works, your
system is set up correctly and only the authentication need to be

DIGEST-MD5 requires that the server stores the password in plain text.
It does work with sasldb, but e.g. with Kerberos it does not work.
You have to tell the server explicitly not to advertise DIGEST-MD5 in
such cases.

Forget about sasldb in context with OpenLDAP.
Alternatively you may think about TOTP:

Or check out OpenLDAP 2.5+ which has an OTP module:




Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:

Cyrus: SASL
Delivery options:

[Index of Archives]     [Info Cyrus]     [Squirrel Mail]     [Linux Media]     [Yosemite News]     [gtk]     [KDE]     [Gimp on Windows]     [Steve's Art]

  Powered by Linux