[Date Prev][Date Next] [Chronological] [Thread] [Top]

Getting SASL working

To: <openldap-software@OpenLDAP.org>
Subject: Getting SASL working
From: "Jonathan Reeder" <jreeder@nscnet.com>
Date: Thu, 30 Dec 2004 13:08:28 -0600
Importance: Normal

I've got a working OpenLDAP 2.2 running, and I can use simple binds to both modify and query the directory. However, I'm getting an error when I try to bind with SASL. The error is:

# ldapsearch -b "dc=mydomain,dc=com" "(objectclass=*)"

ldap_sasl_interactive_bind_s: No such object

I have an ldap-readable keytab with a single principle - ldap/fqdn@MYREALM.COM and I've defined KRB5_KTNAME in my environment. I also have my rootdn set up to be "uid=ldapadmin,cn=gssapi,cn=auth". I can kinint ldapadmin, receive the ticket, but then I get that "No such object" error when I try to run an ldapsearch.

Any pointers? Thanks a bunch.

Jonathan Reeder

Follow-Ups:
- Re: Getting SASL working
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: Getting SASL working
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: Odd problem with open-ldap
Next by Date: RE: Odd problem with open-ldap
Index(es):
- Chronological
- Thread