* Chapman, Kyle (Kyle_Chapman@G1.com) wrote: > if you do a truss on slapd, you may see it fail on a lookup for > krb5.conf located in /usr/local/etc, as many have pointed out, you may > want to use heimdal for your openldap builds, not suggesting that you > replace mit at all... Or just get the patch which adds mutex locks around gssapi calls from SASL. Stephen > -----Original Message----- > From: Jeremy Fressard [mailto:jfressar@laas.fr] > Sent: Friday, June 27, 2003 9:04 AM > To: openldap-bugs@OpenLDAP.org > Subject: Openldap crashes on GSSAPI authentication > > > Hi, > > I have been trying for a while to get openldap working with sasl and > gssapi on Solaris 9 but i have a problem. > > I am using mit kerberos5. > > I compiled sasl-2.1.13 and tested it with the sample server and client > with sucess for gssapi authentication. Later on I compiled > openldap-2.1.21 with kpasswd and kerberos. > > > When I try a ldapsearch (with my TGT), slapd crashes on GSSAPI > authentication : > SASL/GSSAPI authentication started > ldap_sasl_interactive_bind_s : Can't contact LDAP server (81) // I think > that's why it is dead. > > In my KDC.log there is the TGS request which is ok but i think slapd > crashe (I think) at the TGS response. > But I have my ticket LDAP/FQDN in my cache (klist). > > > Thanks you very much if you have an idea. > NOTICE: This E-mail may contain confidential information. If you are not > the addressee or the intended recipient please do not read this E-mail > and please immediately delete this e-mail message and any attachments > from your workstation or network mail system. If you are the addressee > or the intended recipient and you save or print a copy of this E-mail, > please place it in an appropriate file, depending on whether > confidential information is contained in the message. > >
Attachment:
pgp7SllLvetus.pgp
Description: PGP signature