For LDAP entries in the DIRECTORY section  Security drivers

Appendix B: Configuration Files

Encrypting the password

Entries in the libtcl.cfg and libtcl64.cfg files are in human-readable format. Sybase provides a pwdcrypt utility for basic password encryption. pwdcrypt is a simple algorithm that, when applied to keyboard input, generates an encrypted value that can be substituted for the password. pwdcrypt is located in %SYBASE%\%SYBASE_OCS%\bin.

StepsEncrypting the password

  1. From the Open Client and Open Server (OCS) directory, enter at your command prompt:

    bin/pwdcrypt

  2. Enter your password twice when prompted. pwdcrypt generates an encrypted password, for example:

    0x01312a775ab9d5c71f99f05f7712d2cded2i8d0ae1ce78868d0e8669313d1bc4c706

  3. Copy and paste the encrypted password into the libtcl*.cfg file using any standard ASCII-text editor. Before encryption, the file entry appears as follows:

    NoteThe LDAP URL must be on a single line.

    ldap=libsybdldap.dll
ldap://dolly/dc=sybase,dc=com????bindname=cn=Manager,dc=sybase,
dc=com?secret

  4. Replace the password with the encrypted string:

    ldap=libsybdldap.dll
ldap://dolly/dc=sybase,dc=com????bindname=cn=Manager,dc=sybase,dc=com?
0x01312a775ab9d5c71f99f05f7712d2cded2i8d0ae1ce78868d0e8669313d1bc4c706

WARNING! Even if your password is encrypted, you should still protect it using file-system security.




Copyright © 2009. Sybase Inc. All rights reserved. Security drivers

View this document as PDF