(I know, it's a bad idea but we have a short-term need to do this).

I found that adding 'password-hash {CLEARTEXT}' to the slapd.conf file allows us to store cleartext passwords in the LDAP directory if we use zmprov.

zmprov ma <user> userPassword <clear text>

But when a user changes his password in the Web interface (Preferences -> Change Password) the new password still gets written as an encrypted value.

It sounds like we need to make a config change somewhere to tell the Web interface to write the password in clear text.

Can someone tell us what we need to do?