Re: Heimdal - OpenLDAP - RedHat redux

["Kurt D. Zeilenga" <Kurt@OpenLDAP.org>]

This appears more of a topic for the Heimdal mailing list.

Kurt

At 10:25 AM 8/30/2004, Andrew Bacchi wrote:
>I'm trying very hard to implement kerberos auth services in an LDAP
>database.  I've read the archives, and my head is still spinning.
>
>>From what I can tell I have to ignore RedHat's versions of OpenLDAP, MIT
>kerberos 5, and cyrus-sasl and openssl, and build each one in locally. 
>Is this true?  
>
>Is cyrus-sasl absolutely necessary?
>
>I have LDAP working, Heimdal working, against my own build of Openssl,
>and I think I have the correct permissions for ldapi://.  My problem is
>Heimdal is not storing admin/ accounts in the LDAP database.  strace on
>"kadmin -l init RPI.EDU" does not show any contact to ldapi://, but
>creates db files in the 'pwd'.
>
>Any help is VERY welcome.
>
>My versions, so far:
>RedHat Linux AS 3.0
>OpenLDAP  2.2.15 - my build from source.
>OpenSSL 0.9.7a - my build from source.
>Heimdal 0.6.2 - my build from source.
>
>RedHat's RPMs of cyrus-sasl
>cyrus-sasl-devel-2.1.15-8
>cyrus-sasl-2.1.15-8
>cyrus-sasl-gssapi-2.1.15-8
>cyrus-sasl-plain-2.1.15-8
>cyrus-sasl-md5-2.1.15-8
>
>-- 
>Facade: Provide a unified interface to a set of interfaces in a
>subsystem.
>
>Andrew Bacchi
>Staff Systems Programmer
>Rensselaer Polytechnic Institute
>phone: 518 276-6415  fax: 518 276-2809
>
>http://www.rpi.edu/~bacchi/