ldapusersync does not handle non des-crypt psw hashes except ssha, and this can cause calls to modbks to fail


An ldapusersync call to modbks to set encrypted password fails in BoKS 6.6.2 and 6.6.1 with HFBM-0013 installed. The reason is that modbks in BoKS 6.6.2 has been modified to do better argument checking, and the modbks call in ldapusersync is actually not correct.

In addition, if LDAP contains non des-crypt password hashes in the form {crypt}$... (e.g. MD5 hashes as {crypt}$1$...) ldapusersync failed to handle these correctly.

Resolution / Workaround

Install hotfix HFBM-0021-2, available for download from the HelpSystems Community Portal.

This hotfix includes a fixed version of ldapusersync that resolves these issues.

Alternatively, you can also resolve this issue by upgrading to BoKS Manager 6.7.

Note that this issue also affects:

  • BoKS Manager 6.6.1

Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018