Return-Path: X-Original-To: apmail-directory-dev-archive@www.apache.org Delivered-To: apmail-directory-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 79450D4BA for ; Tue, 10 Jul 2012 10:08:38 +0000 (UTC) Received: (qmail 57142 invoked by uid 500); 10 Jul 2012 10:08:38 -0000 Delivered-To: apmail-directory-dev-archive@directory.apache.org Received: (qmail 56128 invoked by uid 500); 10 Jul 2012 10:08:31 -0000 Mailing-List: contact dev-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Apache Directory Developers List" Delivered-To: mailing list dev@directory.apache.org Received: (qmail 56086 invoked by uid 99); 10 Jul 2012 10:08:30 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 10 Jul 2012 10:08:30 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of lists@nabble.com designates 216.139.236.26 as permitted sender) Received: from [216.139.236.26] (HELO sam.nabble.com) (216.139.236.26) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 10 Jul 2012 10:08:25 +0000 Received: from telerig.nabble.com ([192.168.236.162]) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1SoXMS-0004Ma-SX for dev@directory.apache.org; Tue, 10 Jul 2012 03:08:04 -0700 Message-ID: <34138828.post@talk.nabble.com> Date: Tue, 10 Jul 2012 03:08:04 -0700 (PDT) From: rJassal To: dev@directory.apache.org Subject: Re: ApacheDS - DIGEST-MD5 - INVALID_CREDENTIALS: DIGEST-MD5: cannot acquire password In-Reply-To: <34132739.post@talk.nabble.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: jassal.ravinderjit@gmail.com References: <34132601.post@talk.nabble.com> <34132739.post@talk.nabble.com> X-Virus-Checked: Checked by ClamAV on apache.org Any pointer for this. I tried with Apaches 1.5.7 and getting same error. rJassal wrote: > > Yes, password is stored in salted-SHA hashes.(I can see this once > connected using Apache Studio). > But in my ldif file I provided the password as plain text. > userpassword:: secret > > Where can I configure ApachesDS not to store my password in SHA hashes? > > > Kiran Ayyagari-2 wrote: >> >> DIGEST-MD5 requires the password to be stored in plain text in the >> server. >> check if your password is stored in plain text or not, by default >> ApacheDS stores the >> passwords in salted-SHA hashes >> >> On Mon, Jul 9, 2012 at 12:36 PM, rJassal >> wrote: >>> >>> Hi, >>> >>> I am working with ApacheDS 2.0.0-M7 release and trying to connect using >>> DIGEST-MD5 mechanism using the below code. >>> >>> >>> Hashtable env = new Hashtable(); >>> >>> env.put(Context.INITIAL_CONTEXT_FACTORY, >>> "com.sun.jndi.ldap.LdapCtxFactory"); >>> env.put(Context.PROVIDER_URL, "ldap://ldap.example.com:10389"); >>> >>> env.put(Context.SECURITY_PRINCIPAL, "mborn"); >>> env.put(Context.SECURITY_CREDENTIALS, "secret"); >>> env.put(Context.SECURITY_AUTHENTICATION, "DIGEST-MD5"); >>> env.put( "java.naming.security.sasl.realm", "example.com" ); >>> >>> InitialDirContext ctx = new InitialDirContext(env); >>> >>> But I am getting this error 'INVALID_CREDENTIALS: DIGEST-MD5: cannot >>> acquire >>> password'. >>> >>> Can anyone please help me in this? >>> Am I doing something wrong in the code or do I need to make some >>> configuration changes in ApacheDS? >>> -- >>> View this message in context: >>> http://old.nabble.com/ApacheDS---DIGEST-MD5---INVALID_CREDENTIALS%3A-DIGEST-MD5%3A-cannot-acquire-password-tp34132601p34132601.html >>> Sent from the Apache Directory Project mailing list archive at >>> Nabble.com. >>> >> >> >> >> -- >> Kiran Ayyagari >> >> > > -- View this message in context: http://old.nabble.com/ApacheDS---DIGEST-MD5---INVALID_CREDENTIALS%3A-DIGEST-MD5%3A-cannot-acquire-password-tp34132601p34138828.html Sent from the Apache Directory Project mailing list archive at Nabble.com.