Is it possible for sendmail to authenticate users from LDAP with passwords stored as SHA512 hash ? If yes, how?
Edit: OS is Arch Linux and i want to use only LDAP to authenticate users.
Is it possible for sendmail to authenticate users from LDAP with passwords stored as SHA512 hash ? If yes, how?
Edit: OS is Arch Linux and i want to use only LDAP to authenticate users.
Typically you configure sendmail to pass the authentication requests to the saslauthd daemon and you configure saslauthd to use LDAP as a backend.
Then it depends a bit on how your LDAP database is configured, is the SHA512 password the actual password or a completely different attribute?
Because if I recall correctly by default saslauthd will use a bind to validate the credentials and then it is the LDAP directory that will perform the password hashing and validate the credentials. Therefor if the SHA512 hash is the actual password then neither sendmail, nor saslauthd need to be aware of how your passwords are stored, they simply pass the supplied username and password combination to the LDAP directory and see a succes or failure.