userPassword (OpenLDAP)에서 md5 사용

Question

ssh 자동 수정에 LDAP를 사용하고 있습니다.

{crypt}이 (가) 정상적으로 작동하지만 {md5}의 userPassword는 작동하지 않습니다.

ldapmodify -Vv -D "cn=Manager,dc=*,dc=*" -W -f *.ldif 

* .ldif :

dn: uid=*,ou=People,dc=*,dc=* 
changetype: modify 
replace: userPassword 
userPassword: {CRYPT}eGUw6pD1aAClQ 

* .ldif :

dn: uid=*,ou=People,dc=*,dc=* 
changetype: modify 
replace: userPassword 
userPassword: {MD5}ICy5YqxZB1uWSwcVLSNLcA== 

의 standart 구성 : https://wiki.gentoo.org/wiki/Centralized_authentication_using_OpenLDAP

Answer 1

SSHA으로 해결할 :

0,123,723,334을

일반 md5보다 좋습니다.

https://developer.apple.com/library/mac/documentation/Darwin/Reference/Manpages/man8/slappasswd.8.html

결과 :

ssha512

slappasswd -h {ssha} -c '$6$%s' -s 123 

{CRYPT} $ (6) $ s2mWoK1ZzwO0v02J $ yi19QVOQB0ESrHwnCV.bl0RjwmwxWlNMl9z9FB0AqC9fL8SX2Q8Q2/k0Zj.l0qNtOacq6SWMdmfkDWQ4L1cqp.

dn: uid=test1,ou=People,dc=*,dc=* 
uid: test1 
cn: test1 
sn: test1 
objectClass: person 
objectClass: organizationalPerson 
objectClass: inetOrgPerson 
objectClass: posixAccount 
objectClass: top 
objectClass: shadowAccount 
userPassword: {CRYPT}$6$s2mWoK1ZzwO0v02J$yi19QVOQB0ESrHwnCV.bl0RjwmwxWlNMl9z9FB0AqC9fL8SX2Q8Q2/k0Zj.l0qNtOacq6SWMdmfkDWQ4L1cqp. 
shadowLastChange: 16176 
loginShell: /bin/bash 
uidNumber: 0 
gidNumber: 0 
homeDirectory: /home/test1 
gecos: test1