Ldap – disable plaintext password in ldap


I have a openldap server v3 that is storing passwords in plain text, is there anyway by which we can change the password to be stored in SSHA format by default. I use Apache DS to login to the directory tree and i see the user passwords in plaintext which in turn is a security keyhole for my firm. Please suggest as to how i enable forced SSHA password mechanism and turn of clear text.

Let me know if anyone needs more data from my side to answer this. Many thanx in advance.

Best Answer

You can use the parameter


in your config to define the type of hashing (ex {SSHA}).