SLAPD-PW-SHA2 - Online Linux Manual PageSection : 5
Updated : RELEASEDATE
Source : OpenLDAP LDVERSION

NAMEslapd-pw-sha2 − SHA-2 password module to slapd

SYNOPSISETCDIR/slapd.conf moduleload pw-sha2

DESCRIPTIONThe pw-sha2 module to slapd(8) provides support for the use of SSHA-512, SSHA-384, SSHA-256, SHA-512, SHA-384 and SHA-256 from the SHA-2 family (FIPS 180-2) of hash functions in hashed passwords in OpenLDAP. It does so by providing the following additional password schemes for use in slapd: {SSHA256}  SHA-256 with salt, giving hash values of 256 bits length {SHA256}  plain SHA-256 giving hash values of 256 bits length {SSHA384}  SHA-384 with salt, giving hash values of 384 bits length {SHA384}  plain SHA-384 giving hash values of 384 bits length {SSHA512}  SHA-512 with salt, giving hash values of 512 bits length {SHA512}  plain SHA-512 giving hash values of 512 bits length

CONFIGURATIONThe pw-sha2 module does not need any configuration. After loading the module, the password schemes {SSHA256}, {SSHA384}, {SSHA512}, {SSHA256}, {SHA384}, and {SHA512} will be recognised in values of the userPassword attribute. You can then instruct OpenLDAP to use these schemes when processing the LDAPv3 Password Modify (RFC 3062) extended operations by using the password-hash option in slapd.conf(5).

NOTESIf you want to use the schemes described here with slappasswd(8), don't forget to load the module using its command line options. The relevant option/value is: −o module−load=pw-sha2 Depending on pw-sha2's location, you may also need: −o module−path=pathspec

EXAMPLESAll of the userPassword LDAP attributes below encode the password 'secret'. userPassword: {SHA512}vSsar3708Jvp9Szi2NWZZ02Bqp1qRCFpbcTZPdBhnWgs5WtNZKnvCXdhztmeD2cmW192CF5bDufKRpayrW/isg== userPassword: {SHA384}WKd1ukESvjAFrkQHznV9iP2nHUBJe7gCbsrFTU4//HIyzo3jq1rLMK45dg/ufFPt userPassword: {SHA256}K7gNU3sdo+OL0wNhqoVWhr3g6s1xYv72ol/pe/Unols=To make {SSHA512} the password hash used in Password Modify extended operations, simply set this line in slapd.conf(5): password-hash {SSHA512}

SEE ALSO slapd.conf(5), ldappasswd(1), slappasswd(8), ldap(3), "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)

ACKNOWLEDGEMENTSThis manual page has been written by Peter Marschall based on the module's README file written by Jeff Turner. OpenLDAP is developed and maintained by The OpenLDAP Project (http://www.openldap.org/). OpenLDAP is derived from University of Michigan LDAP 3.3 Release.
0
Johanes Gumabo
Data Size   :   11,387 byte
man-slapd-pw-sha2.5Build   :   2024-12-05, 20:55   :  
Visitor Screen   :   x
Visitor Counter ( page / site )   :   3 / 203,200
Visitor ID   :     :  
Visitor IP   :   3.144.18.59   :  
Visitor Provider   :   AMAZON-02   :  
Provider Position ( lat x lon )   :   39.962500 x -83.006100   :   x
Provider Accuracy Radius ( km )   :   1000   :  
Provider City   :   Columbus   :  
Provider Province   :   Ohio ,   :   ,
Provider Country   :   United States   :  
Provider Continent   :   North America   :  
Visitor Recorder   :   Version   :  
Visitor Recorder   :   Library   :  
Online Linux Manual Page   :   Version   :   Online Linux Manual Page - Fedora.40 - march=x86-64 - mtune=generic - 24.12.05
Online Linux Manual Page   :   Library   :   lib_c - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Online Linux Manual Page   :   Library   :   lib_m - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Data Base   :   Version   :   Online Linux Manual Page Database - 24.04.13 - march=x86-64 - mtune=generic - fedora-38
Data Base   :   Library   :   lib_c - 23.02.07 - march=x86-64 - mtune=generic - fedora.36

Very long time ago, I have the best tutor, Wenzel Svojanovsky . If someone knows the email address of Wenzel Svojanovsky , please send an email to johanes_gumabo@yahoo.co.id .
If error, please print screen and send to johanes_gumabo@yahoo.co.id
Under development. Support me via PayPal.