[JDEV] Working with Active Directory (reply urgently)
Bernd Eckenfels
lists at lina.inka.de
Mon Jul 1 10:08:55 CDT 2002
On Mon, Jul 01, 2002 at 02:12:40PM +0100, Shriram pore wrote:
> able to do from Linux or Windows using LDAP functions. But i am
> facing a problem that i can't cassign password for that
> particular user. Can any body help me out
the pam_ldap module allows to set active directory passwords. You can read
in the code how it is done. Basically you are forced to use 128bit SSL and
then set the password in the right format:
case PASSWORD_AD:
/*
* Patch from Norbert Klasen <klasen at zdv.uni-tuebingen.de>:
*
* To be able to change a password in AD via LDAP, an SSL connection
* with a cipher strength of at least 128 bit must be established.
* http://support.microsoft.com/support/kb/articles/q264/4/80.ASP
* http://support.microsoft.com/support/kb/articles/Q247/0/78.ASP
*
* The password attribute used by AD is unicodePwd. Its syntax is octect
* string. The actual value is the password surrounded by quotes in
* Unicode (LSBFirst).
*
* NT passwords can have max. 14 characters.
*
get pam_ldap from http://www.padl.com/download/pam_ldap.tgz
Greetings
Bernd
--
(OO) -- Bernd_Eckenfels at Wendelinusstrasse39.76646Bruchsal.de --
( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
o--o *plush* 2048/93600EFD eckes at irc +497257930613 BE5-RIPE
(O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
More information about the JDev
mailing list