[Mageia-sysadm] Creating ldap account

Michael Scherer misc at zarb.org
Thu Oct 13 20:45:01 CEST 2011


Le mercredi 12 octobre 2011 à 12:40 +0200, nicolas vigier a écrit :
> On Mon, 10 Oct 2011, Michael Scherer wrote:
> 
> > Le lundi 10 octobre 2011 à 19:31 +0200, nicolas vigier a écrit :
> > > Hello,
> > > 
> > > I'm trying to create the ldap account that will be used by mediawiki.
> > > 
> > > So I'm running this :
> > > ldapvi --host  ldap.mageia.org -Z --tls allow  -D "uid=boklm,ou=People,dc=mageia,dc=org" -b ou=System Accounts,dc=mageia,dc=org
> > > 
> > > And I add the following lines :
> > > add cn=mediawiki-alamut,ou=System Accounts,dc=mageia,dc=org
> > > objectClass: organizationalRole
> > > objectClass: simpleSecurityObject
> > > cn: mediawiki-alamut
> > > userPassword:ssha aBcor88zzZoOOzFFF
> > 
> > I did the same, but added more than simple alphanumeric char :
> > userPassword: %er$fO9ooo
> 
> I thought I tried non-alphanumeric characters, but it seems not.

We could likely change the requirement ( ie simplify it by trading
complexity for lenght ) for the system account. Ie, decide that we would
be ok with a 12 or 14 chars password, and nothing regarding complexity. 

This would ease our work while keeping a correct level of security.
 

-- 
Michael Scherer



More information about the Mageia-sysadm mailing list