I'd like to use Novell's LDAP server to authenticate website users on an intranet. I've found that I must select the option to allow clear text passwords in order to get it to work. Problem is, I don't want to use clear text passwords (for obvious reasons). Anybody know how do this without using clear text?

The web server is not running on the same box as the LDAP server and the site uses PHP. Using clear text username/password the code would look something like this...

<?php

/* code here to verify username & password entered, don't contain invalid characters, etc */


$ldap = @ldap_connect("1.2.3.4") or die("Could not connect to LDAP server");
if ($ldap$)
$bind_result = @ldap_bind($ldap, "cn=" . $username . ",o=Company", $password) or die("Invalid Login Attempt");


/* Bunch of other code here */

?>