Configuring PBKDF2 password encryption with Security Directory Server
You can configure PBKDF2 password encryption.
Before you begin
- Install or upgrade to IBM® Security Directory Server 6.4.0.16 or later fix levels.
- Install or upgrade to GSKit 8.0.50.88 or later.
You can download the latest version from Fix Central.
Ensure that you install the latest recommended fix levels for IBM Security Directory Server and GSKit.
Note: Consider the following notes
- If GSKit version is older than 8.0.50.88, then, a message is printed in traceibmslapd.log file that, Upgrade GSKit version to 8.0.50.88 or later to use any of PBKDF2 encryption mechanism.
- If ibm-slapdPwEncryption is set to PBKDF2 algorithm, and GSKit version is older than, 8.0.50.88, then, server will start in configuration only mode with ERROR message in ibmslapd.log and on console that, upgrade GSKit to 8.0.50.88 or later to set PBKDF2 algorithm for ibm-slapdPwEncryption.
About this task
The feature was introduced in 6.4.0.16.