--On Tuesday, April 22, 2025 2:07 PM +0000 "Windl, Ulrich" <[email protected]>
wrote:
Hi!
Using OpenLDAP 2.5 from SLES15 SP6 I added "olcPasswordHash: sha256"
("olcPasswordHash: {sha256}") to cn=config (I wanted to add it to the
{-1}frontend database, but slapd refused.
I was able to set {SHA256} RootPWs, but now when I try slapcat, I get an
error saying:
Is it my error, or slapcat's?
If you didn't add pw-sha2 as a moduleload to the server configuration, then
it would be your error, and based on the output, that appears to be the
case. I would additionally note that it's a very bad idea to use SHA256,
SSHA256 would be significantly better since then it is salted.
--Quanah
