I know I've got to be missing something easy here, but I've been having trouble answering this question. I have an old Solaris 7 server with 2000+ user accounts in /etc/shadow format handling email. I'm switching to a new qmail-ldap system on several FreeBSD systems. How on earth do I convert the user passwords from the Solaris /etc/shadow crypt style to a format that will work with qmail-ldap. Just copying the entry from /etc/shadow into an ldif file for a user, and loading that into the LDAP server doesn't work. I can set up the account with a MD5 digest and things work great, but you need the cleartext to generate that. At some point we'll slowly migrate customers to use something more secure than crypt, but I need to find a way to use the /etc/shadow file contents in the userPassword attribute on each users LDAP entry to avoid a bunch of angry customers. I've found lots of information converting Linux's /etc/shadow but Solaris uses the old 13char string format. Any help would be greatly appreciated.
- Tom
