2 Replies Latest reply on Aug 19, 2009 10:50 AM by deanouk

Default encryption scheme for SynchronizingLDAPExtLoginModul

deanouk Aug 19, 2009 7:18 AM

Hi all,

We have a scheme where if AD is down, the user authenticates via the locally stored credentials in the database, which have been stored via the SynchronizingLDAPExtLoginModule.

However. I'm having trouble matching the password scheme of the database login module (DBIdentityLoginModule) to that of the SynchronizingLDAPExtLoginModule.

What scheme does SynchronizingLDAPExtLoginModule use and what should I configure the database login module to use so that passwords can be validated locally?

Regards,

Dean

1. Re: Default encryption scheme for SynchronizingLDAPExtLoginM

vegastyl Aug 19, 2009 9:09 AM (in response to deanouk)
We have a similar setup with AD authentication and DB as a backup. I have the DBIdentityLoginModule configured with the options of:

<module-option name="hashAlgorithm">MD5</module-option> <module-option name="hashEncoding">HEX</module-option>

I believe these are the defaults for this module.
Actions
2. Re: Default encryption scheme for SynchronizingLDAPExtLoginM

deanouk Aug 19, 2009 10:50 AM (in response to deanouk)

Thanks for your reply.

I actually tried this scheme and it failed. However, as you suggested it again I gave it another whirl and found I have some other problem, as the password was being validated.

Thanks for your help.
Actions

Go to original post