I've set up OpenLDAP 2.4 (CentOS 6) and SSSD. I'm able to authenticate regular users -- I imported the LDIF using {CRYPT}password.
However, I established a "role" account for general auth reads and it won't work. ldapsearch is not working for anything other than Manager, regardless -- of reinsertion of the {crypt}string (slappasswd -h {crypt}). I tried resetting the password manually (CLI) and via PhpLdapAdmin. Same result.
When I do a search for a user record, I am not seeing the userPassword string prefixed with any {crypt}, just a string.
In any case, I'm baffled about why this isn't working. Might someone have a pointer or two?
Thanks.
However, I established a "role" account for general auth reads and it won't work. ldapsearch is not working for anything other than Manager, regardless -- of reinsertion of the {crypt}string (slappasswd -h {crypt}). I tried resetting the password manually (CLI) and via PhpLdapAdmin. Same result.
When I do a search for a user record, I am not seeing the userPassword string prefixed with any {crypt}, just a string.
In any case, I'm baffled about why this isn't working. Might someone have a pointer or two?
Thanks.
