In a new LDAP driver we saw the issue, that some passwords for new users were NOT stored as a hashed value.

We configured the driver so that the setting of the initial password will happen after the new user is created. This was important, since if we append the password to the add-operation the password will be stored in clear-text.

All testing with only a hand full of new users was working as expected, but when we synchronized more than 20k of users, we finally found that some users (1 out of 10.000) was created with an clear-text password, all others were created as expected.

According to the LDAP admin, there is no problem with the LDAP-Server, but I can see no problem on the IDM side either?

Any ideas or suggestions?

Kind regards,

Thorsten