NIS/LDAP Gateway Administrator's Guide
• Make sure UNIX crypt is the default encryption. Verify in Netscape/Red Hat Directory
Server with a command like the following:
ldapsearch -b "o=hp.com" -D "AdminDN" -w "AdminPw" uid=username
where AdminDN is the directory administrator's relative distinguished name, AdminPw is
the administrator's password, and username is the name of a user in the directory. The
user must be an inetorgperson or posixaccount.
The output should show something like the following:
userPassword: {crypt}3Adkd9D2s9234sf
If it shows either of the following:
userPassword: {sha}3Adkd9D2s9234sf
userPassword: mypass123
change it to use crypt encryption. sha indicates secure hash algorithm encryption and no
bracketed text indicates a clear text password.
You can also check the default encryption in the Directory Console. Select the Configuration
tab, then select the "Database" object, then the Passwords tab, and check the Password
encryption field.
• Make sure that hidden passwords are disabled. The hide_passwords parameter in
ypldapd.conf should be set to no.
• Try restarting the client with a command like the following:
/sbin/init.d/nis.client stop
/sbin/init.d/nis.client start
Troubleshooting 31