(Answer) (Category) OpenLDAP Faq-O-Matic : (Category) OpenLDAP Software FAQ : (Category) Configuration : (Category) SLAPD Configuration : (Category) Passwords : (Answer) Does ldapsearch encrypt userPassword values?
No. ldapsearch(1), itself, does not encrypt values of any attribute. However, ldapsearch(1) will present values of some attributes, such as userPassword, using LDIF's base64 encoding form. For example, a userPassword value of "secret" is presented as follows:
 userPassword:: c2VjcmV0
One may use any base64 decoder to obtain the represented value.
The following demonstrates how to one could decode the above base64 encoded value using perl. 
  echo "c2VjcmV0" | perl -MMIME::Base64 -ne 'print decode_base64($_) . "\n"'
Executing this command prints "secret" followed by a newline.
[Append to This Answer]
Previous: (Answer) Does OpenLDAP support password policies?
Next: (Answer) Why doesn't ldapsearch provide the actual value of userPassword ?
This document is: http://www.openldap.org/faq/index.cgi?file=1346
[Search] [Appearance]
This is a Faq-O-Matic 2.721.test.
© Copyright 1998-2013, OpenLDAP Foundation, info@OpenLDAP.org