In Tiger, it looks like loginwindow's authentication is using
dsAuthMethodStandard:dsAuthNodeNativeCannotUseClearText rather than
dsAuthMethodStandard:dsAuthNodeNativeCanUseClearText
However, the LDAPv3 plugin appears to only understand {crypt} and
{SMD5} format passwords. Generally it is recommended that {SHA1} or
{SSHA1} is used.
The manifestation of this is that you can't log in to the GUI whilst
authenticating against an LDAP server whose user accounts have
passwords stored in SHA-1 hashes, but you can log in using ssh (and
possibly other stuff).
Have I missed something? If not, I'll file a bug :-)
-- Finlay
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/darwin-dev/email@hidden
This email sent to email@hidden
