Exposing password hashes to an LDAP client.

Matthias Dieter Wallnöfer mdw at samba.org
Sat Mar 19 03:07:39 MDT 2011


you don't have to change the "password_hash" LDB module at all. Since on 
LDAP search requests the password attributes are removed in the "acl" 
LDB module you might only need to change some array named "password 
attributes" or so.
But probably Nadya could help you more since she is the maintainer of 
the "acl" module.


brendan powers wrote:
> Hi,
> I need to integrate with an application that requires access to the
> password hashes in Active Directory. The application usually does this
> though a filter DLL that exposes a SHA1 hash of the users password as
> an LDAP attribute.
> Does anyone have any thoughts on how I could go about doing this in
> samba4? I assume some modification of the password_hash module will be
> needed.

More information about the samba-technical mailing list