[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch and SASL

To: "Rechenberg, Andrew" <ARechenberg@shermanfinancialgroup.com>, "'openldap-software@openldap.org'" <openldap-software@OpenLDAP.org>
Subject: Re: ldapsearch and SASL
From: Norbert Klasen <norbert.klasen@daasi.de>
Date: Thu, 26 Jul 2001 17:29:21 +0200
Cc: "'ldap@umich.edu'" <ldap@umich.edu>
Content-disposition: inline
In-reply-to: <35F52ABC3317D511A55300D0B73EB805061437@cinshrexc01.shermfin.com>

--On Mittwoch, 25. Juli 2001 13:50 -0400 "Rechenberg, Andrew" <ARechenberg@shermanfinancialgroup.com> wrote:

Can anyone give me the syntax for ldapsearch to use SASL to connect to
Windows 2000 Active Directory instead of using a simple bind?  Whenever I
try to bind to the directory I get the following:

[root@rh71test /tmp]# ldapsearch -h 10.1.1.18 -I -b'dc=shermfin,dc=com'
'mssfuname=awood'
SASL/GSSAPI authentication started
SASL Interaction
Please enter your authorization name: arechenberg
ldap_sasl_interactive_bind_s: Local error


You need to get a Kerberos TGT from Active Directory before you can use SASL GSSAPI.

-- Norbert Klasen
DAASI International GmbH                 phone: +49 7071 2970336
Wilhelmstr. 106                          fax:   +49 7071 295114
72074 Tübingen                           email: norbert.klasen@daasi.de
Germany                                  web:   http://www.daasi.de

References:
- ldapsearch and SASL
  - From: "Rechenberg, Andrew" <ARechenberg@shermanfinancialgroup.com>

Prev by Date: trouble with compiling source
Next by Date: Re: trouble with compiling source
Index(es):
- Chronological
- Thread