Authentication Schemes Supported in Comparison Mode

When comparison mode is in use, the following LDAP server password hash/encryption schemes are supported:

*Supported LDAP Schemes*
Scheme	Format	Description	Algorithm	Notes
{SCHEME}Hash	`{crypt}Q8k7rHl9JtTOI`	UNIX crypt	Calculate hash from the clear text password based on algorithm and compare with password digest	Supported by OpenLDAP
	`{SHA}!J78ElrfcxQlheAG/XBSz76Upy5+t65mE`	SHA hashing algorithm followed by the hash
	`{CLEARTEXT}mypassword`	Clear text password
{SCHEME}Hash(passwd+seed)	`{SSHA}!J78ElrfcxQlheAG/XBSz76Upy5+t65mE`	Seeded SHA hashing algorithm with the first 6 chars as the seed	Calculate the seed from the hash and calculate hash based on the clear text + salt
PAM MD5	`$1$qPU.kEzE$Sydn2HVBATM2moKTITsPk0`	Password hash in `$1$[salt]>$[hash]` format. $1$ is the magic string for MD5 hashing
Apache MD5	`$apr1$A7lJPWbr$4VO3DXCAD/1U2bOX/fj6a/`	`$apr1$[salt]$[hash]` format. $apr1$ is the magic string
Clear Text	`Mypassword`	clear text password in octet string, specified in rfc2256	String comparison	Must not be used

Did you find this helpful?

Yes No