Can ldapcompare be used to compare passwords?

The ldapcompare command-line tool allows you to compare an attribute:value pair for a given DN and returns True or False

The following command works:

$ ldapcompare -v -D "cn=directory manager" -w DMPW 'title:associate' "uid=qbrd,ou=associate,o=sf,c=us"

ldapcompare: started Fri Oct 6 16:07:09 2006

ldap_init( localhost, 389 )

comparing type: "title" value: "associate" in entry "uid=qbrd,ou=associate,o=sf,c=us"

compare TRUE

This one doesn't work:

$ ldapcompare -v -D "cn=directory manager" -w DMPW 'userPassword:myPassword' "uid=qbrd,ou=associate,o=sf,c=us>

ldapcompare: started Fri Oct 6 16:07:22 2006

ldap_init( localhost, 389 )

comparing type: "userPassword" value: "myPassword" in entry "uid=qbrd,ou=associate,o=sf,c=us"

compare FALSE

The userPassword is stored in the directory as SHA. Can we only compare using the SHA encrypted password? Is there a way to test with a clear-text password?

Thanks in advance!!

[1015 byte] By [bombaybabe] at [2007-11-26 10:38:06]

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Can ldapcompare be used to compare passwords?

Web & Directory Servers New Topic

Web & Directory Servers Hot Topic

Web & Directory Servers

All Classified