Return-Path: 
 <users-return-3598-apmail-directory-users-archive=directory.apache.org@directory.apache.org>
Delivered-To: apmail-directory-users-archive@www.apache.org
Received: (qmail 36937 invoked from network); 8 Oct 2010 17:08:35 -0000
Received: from unknown (HELO mail.apache.org) (140.211.11.3)
  by 140.211.11.9 with SMTP; 8 Oct 2010 17:08:35 -0000
Received: (qmail 21082 invoked by uid 500); 8 Oct 2010 17:08:35 -0000
Delivered-To: apmail-directory-users-archive@directory.apache.org
Received: (qmail 21045 invoked by uid 500); 8 Oct 2010 17:08:35 -0000
Mailing-List: contact users-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@directory.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@directory.apache.org>
List-Post: <mailto:users@directory.apache.org>
List-Id: <users.directory.apache.org>
Reply-To: users@directory.apache.org
Delivered-To: mailing list users@directory.apache.org
Received: (qmail 21037 invoked by uid 99); 8 Oct 2010 17:08:34 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Oct 2010 17:08:34 +0000
X-ASF-Spam-Status: No, hits=-2.3 required=10.0
	tests=RCVD_IN_DNSWL_MED,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: local policy)
Received: from [128.231.90.100] (HELO nihrelayxway6.hub.nih.gov)
 (128.231.90.100)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Oct 2010 17:08:27 +0000
X-IronPortListener: NIH_Relay
X-SBRS: None
X-IronPort-AV: E=Sophos;i="4.57,303,1283745600";
   d="scan'208";a="181850971"
Received: from gonzo.cit.nih.gov ([165.112.93.227])
  by nihrelayxway6.hub.nih.gov with ESMTP; 08 Oct 2010 13:08:06 -0400
Message-ID: <4CAF4FF6.9080400@helix.nih.gov>
Date: Fri, 08 Oct 2010 13:08:06 -0400
From: Jason Russler <jrussler@helix.nih.gov>
User-Agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US;
 rv:1.9.2.9) Gecko/20100915 Thunderbird/3.1.4
MIME-Version: 1.0
To: users@directory.apache.org
CC: Linus van Geuns <linus@vangeuns.name>
Subject: Re: [ApacheDS] Hash question
References: <4CAE1DDA.30603@mail.nih.gov>	<4CAF17A9.8090301@infineon.com>
	<AANLkTimS5kM=F30thTes=zgRrxriwkvuUGxN=S+aNjHD@mail.gmail.com>
	<4CAF2008.5040404@helix.nih.gov>
 <AANLkTimAH5-zztpxag--K3C=68iBEObLnSbT7YtowF2T@mail.gmail.com>
In-Reply-To: <AANLkTimAH5-zztpxag--K3C=68iBEObLnSbT7YtowF2T@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit


> Im using OpenLDAP (slapd) and they support shadow hashes at least for
> MD5,SMD5,SHA1,SSHA1.
> You just need to put the correct tag in front of your [salted] hash
> value from /etc/shadow before saving it to userPassword attribute.
>
> Regards, Linus

Yeah, it also comes with migration scripts.  I'm trying to decide on 
which LDAP server to use at our site.  We're running RedHat 5, which 
means I'll have to build OpenLDAP, along with some dependencies to get 
multi-mastering.  Which is fine, but the cleanest solution wins in this 
case.  I may have to go the OpenLDAP  direction though to keep migration 
easy.  Thanks for your help!

-Jason