Red-hat 8.1 Manual do Utilizador Página 113
- Página / 292
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
3.1 .25. Password Storage Schemes
The cn=Password Storage Schemes entry is a container entry, not a plug-in entry itself. All of the
plug-ins used for encryption are stored under this entry. The supported schemes change as new
encryption methods are added; to view the complete and current list, list the entries under
cn=Password Storage Schem es, cn=plugins, cn=config:
/usr/lib/mozldap/ldapsearch -D "cn=directory manager" -w secret12 -p 389 -b
"cn=Password Storage Schemes,cn=plugins, cn=config" -s sub (objectclass=*)
The different password storage scheme plug-ins are stored in entries named in the format:
cn=Storage Scheme Name Plugin,cn=Password Storage Schemes,cn=plugins,cn=config
For more information on using the different password storage schemes, see the "User Account
Management" chapter in the Directory Server Administrator's Guide.
CAUTION
Do not modify the configuration of the password scheme plug-ins. Red Hat recommends leaving
these plug-ins running at all times.
Table 3.3. Password Storage Plugins
Storage Scheme Na me Usage Note s
CLEAR This encryption method is required for using
SASL.
CRYPT This storage scheme is not very secure and is
included only for compatibility with legacy servers
and to allow migration.
DES This encryption scheme is used only for
reversible encryption and is available for certain
plug-ins; this is not intended for password
storage.
MD5 This storage scheme is not very secure and is
included only for compatibility with legacy servers
and to allow migration.
NS-MTA-MD5 The NS-MTA-MD5 password storage scheme
cannot be used to encrypt passwords. The
storage scheme is still present for backward
compatibility for any entries stored in the directory
with passwords encrypted with the NS-MTA-MD5
password storage scheme.
SHA If there are no passwords encrypted using the
SHA password storage scheme, this plug-in can
be turned off.
Instead of encrypting passwords with the SHA
password storage scheme, Red Hat recommends
choosing SSHA instead because it is more
secure.
SHA256 Use SHA256 or higher to encrypt passwords
because these are stronger encryption schemes.
SHA384 This storage scheme is recommended for
password storage because of its strength.
SHA512 This storage scheme is recommended for
password storage because of its strength.
SSHA This is recommended instead of SHA because it
is a stronger encryption screen. However, Red
Hat recommends using at least the SSHA256
storage scheme or higher because these are
stronger schemes.
SSHA256 Use SSHA256 or higher to encrypt passwords
because these are stronger encryption schemes.
SSHA384 This storage scheme is recommended for
password storage because of its strength.
SSHA512 This storage scheme is recommended for
password storage because of its strength.
Red Hat Directory Server 8.1 Configuration and Command Reference 113
- Red Hat Directory Server 8.1 1
- Legal Notice 2
- Abstract 3
- Table of Contents 4
- 6 Table of Contents 6
- About This Reference 8
- 3. Additional Reading 9
- 10 About This Reference 10
- Chapter 1. Introduction 11
- SSLDescriptors 43
- NOTE> 47
- 2.5. Legacy Attributes 98
- 4.2. Backup Files 154
- 4.3. Configuration Files 154
- 4.4. Database Files 154
- 4.5. LDIF Files 155
- 4.6. Lock Files 155
- 4.8. PID Files 156
- 4.9. Tools 156
- 4.7. Log Files 156
- 4.10. Scripts 157
- Chapter 5. Log File Reference 158
- 5.2. Error Log Reference 166
- 5.3. Audit Log Reference 172
- 5.4. LDAP Result Codes 173
- 6.2. Using Special Characters 175
- 6.4. ldapsearch 176
- "(objectclass=* )" 177
- -w diner892 179
- -P /security/cert.db 181
- -W secret 181
- "authid=test_user" 182
- -f search_filters 186
- -J control OID:boolean 187
- -S sn -S givenname 187
- 6.5. ldapmodify 188
- -f modify_statements 189
- -h cyclops 189
- -w mypassword 189
- 6.6. ldapdelete 194
- 6.7. ldappasswd 198
- -a old_password 199
- -S new_password 199
- -T new_password.txt 199
- -t old_password.txt 199
- -N Server-Cert 200
- 6.8. ldif 203
- 6.9. dbscan 204
- 7.3. Shell Scripts 208
- IMPORTANT 212
- -g deterministic namespace_id 214
- 7.4. Perl Scripts 219
- -g deterministic namespaceId 225
- A.1. Overview of ns-slapd 240
- Glossary 244
- 24 6 Glossary 246
- 24 8 Glossary 248
- 250 Glossary 250
- 252 Glossary 252
- 254 Glossary 254
- 256 Glossary 256
- 258 Glossary 258
- 260 Index 260
- 262 Index 262
- 264 Index 264
- 266 Index 266
- 268 Index 268
- 270 Index 270
- 272 Index 272
- 274 Index 274
- 276 Index 276
- 278 Index 278
- 280 Index 280
- 282 Index 282
- 284 Index 284
- 286 Index 286
- 288 Index 288
- 290 Index 290
- 292 Index 292
© 2020, manymanuals-pt.com. Todos os direitos reservados. | 0.058 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais