[Dovecot] Moving existing MD5 passwords to LDAP?

Timo Sirainen tss at iki.fi
Tue Dec 28 17:40:49 EET 2004


On Thu, 2004-12-23 at 16:59 -0600, Ben Beuchler wrote:
> I have a dovecot installing working quite well for around 1000 users using
> passwd-file authentication.  I'm moving to LDAP and would sure love to be
> able to migrate the existing MD5 passwords.
> 
> I've tried using ldapmodify to set "userPassword" to
> {CRYPT}$1$H8JE0k5X$y.ptShgYbOgWF.99lX88N1
> and
> {MD5}$1$H8JE0k5X$y.ptShgYbOgWF.99lX88N1
> 
> In both cases, ldapmodify exits without errors but I cannot bind using the
> new password.

I don't know about CRYPT, but OpenLDAP expects {MD5} to be base64
encoded MD5 sum of the password. You are giving it MD5crypt encrypted
password which is entirely different. It shouldn't begin with $1$.

Dovecot should be able to handle the {MD5} right, though.. But Dovecot
doesn't support auth binds anyway.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://dovecot.org/pipermail/dovecot/attachments/20041228/5d7eeb0d/attachment-0001.bin>


More information about the dovecot mailing list