Advanced test (LDAP Java browser)

A Java LDAP browser is used (available in Netscape LDAP SDK) to explore LDAP server jeeves (actually a domain controller) :

A SSL connection is used to preserve privacy and security of data transfers (this is needed for secure Linux authentication)  :

dc=bbou,dc=bbou (after DNS name) is the base (=root) for queries. Proper DN identification would go cn=administrator,cn=Users,dc=bbou,dc=net, the distinguished name for the administrator. It also works this way.

This is the root

Explore down to Users container (cn=Users) to see some attributes. Some are used by Unix, most are not. msSFUPassword holds the MD5 hashed password ($1$smpmy...). Also note the shell (/bin/bash), home directory (/home/bbou5), ...

On the Java console (in debugging mode) the initial SSL dialog testify to the encrypton of data transfers. The bottom of the screen show the certificate jeeves sends with its public key.

You can also use tcpdump or any IP sniffer to make sure the transfer is secure.