[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP and SASL...

To: Tobias Rice <rice@up.edu>
Subject: Re: LDAP and SASL...
From: paul kölle <paul@subsignal.org>
Date: Tue, 26 Oct 2004 12:47:32 +0200
Cc: openldap-software@OpenLDAP.org
In-reply-to: <417D2564.1020604@up.edu>
References: <41797E4D.5030300@up.edu> <1098482556.21824.107.camel@hera.folkvang.org> <41798879.3060403@up.edu> <417AE6AA.4080909@subsignal.org> <417D2564.1020604@up.edu>
User-agent: Mozilla Thunderbird 0.7.3 (Windows/20040803)

Tobias Rice wrote:

Paul-
Thanks for your reply, I appriciate the advice. I will be using SSL/TLS
between my systems -> this ldap server.
But my problem is still how to plug OpenLDAP into SASL??? I've read some
stuff about putting '{SASL}user@realm' in the userPassword: field and
ldap will have cyrus auth against my kdc. As I mentioned earlier it
seems that all of my pieces are working fine except OpenLDAP -> SASL.
What do I need to do to make this work?
Many thanks!
Tobias


Sorry for beeing so unspecific ;)

Have you told slapd to use saslauthd for authentication in /etc/sasl2/slapd.conf? (note: the location of that file may differ)

read this if you haven't already:

http://www.openldap.org/faq/data/cache/944.html


hth
 Paul

PS: If you are sure your configuration is correct, please do a bind/search whatever operation and post the relevant logs from slapd(8) and your KDC. Make sure to have a decent logging level set in slapd.conf.

Follow-Ups:
- Re: LDAP and SASL...
  - From: Tobias Rice <rice@up.edu>

References:
- LDAP and SASL...
  - From: Tobias Rice <rice@up.edu>
- Re: LDAP and SASL...
  - From: Kevin <openldap@gnosys.biz>
- Re: LDAP and SASL...
  - From: Tobias Rice <rice@up.edu>
- Re: LDAP and SASL...
  - From: paul kölle <paul@subsignal.org>
- Re: LDAP and SASL...
  - From: Tobias Rice <rice@up.edu>

Prev by Date: Re: custom logon script
Next by Date: Re: Update: replog not created anymore ...
Index(es):
- Chronological
- Thread