Thanks for your help all. it looks like CRYPT was the problem. I've changed passwords over to SSHA and everything works as designed.
-Aaron
From: Elías Halldór Ágústsson <elias@hi.ismailto:elias@hi.is> Date: April 26, 2010 6:18:45 PM MDT To: "389-users@lists.fedoraproject.orgmailto:389-users@lists.fedoraproject.org" <389-users@lists.fedoraproject.orgmailto:389-users@lists.fedoraproject.org> Subject: Re: [389-users] Entire password not checked Reply-To: General discussion list for the 389 Directory server project. <389-users@lists.fedoraproject.orgmailto:389-users@lists.fedoraproject.org>
Aaron Mills skrifaði: However, whenever users authenticate via LDAP the server appears to check only the first 8 characters of their passwords.
You're probably using the CRYPT password method. Other, newer and safer methods, such as SSHA, can store much longer passwords.
<Digest Footer.txt>
Aaron Mills Systems Administrator Return Path, Inc. aaron.mills@returnpath.netmailto:aaron.mills@returnpath.net
389-users@lists.fedoraproject.org