[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Openldap, kerberos backend, and SASL

To: Da Rock <rock_on_the_web@comcen.com.au>
Subject: Re: Openldap, kerberos backend, and SASL
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 05 Mar 2009 02:43:57 +0100
Cc: openldap-technical@openldap.org
In-reply-to: <1236215795.6517.47.camel@laptop1.herveybayaustralia.com.au>
References: <1236162621.6517.11.camel@laptop1.herveybayaustralia.com.au> <49AED2EF.7@stroeder.com> <1236215795.6517.47.camel@laptop1.herveybayaustralia.com.au>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.19) Gecko/20081204 SeaMonkey/1.1.14

Da Rock wrote:
> I'm not sure you quite understand what I mean here-

I think I do. ;-)

There's no reason why you shouldn't be able to do the following:

LDAP Client
  --ldap:// with SASL/GSSAPI--> slapd
     --KRB5--> heimdal KDC
        --ldapi:// with SASL/EXTERNAL--> slapd

In fact the picture is a bit more complicated but I'm too tired to draw
the real one. Hope you get the idea.

Ciao, Michael.

Follow-Ups:
- Re: Openldap, kerberos backend, and SASL
  - From: Da Rock <rock_on_the_web@comcen.com.au>

References:
- Openldap, kerberos backend, and SASL
  - From: Da Rock <rock_on_the_web@comcen.com.au>
- Re: Openldap, kerberos backend, and SASL
  - From: Michael Ströder <michael@stroeder.com>
- Re: Openldap, kerberos backend, and SASL
  - From: Da Rock <rock_on_the_web@comcen.com.au>

Prev by Date: Re: Openldap, kerberos backend, and SASL
Next by Date: Re: Openldap, kerberos backend, and SASL
Index(es):
- Chronological
- Thread