[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite

To: openldap-technical@openldap.org
Subject: Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
From: Allan <cr4z3d@gmail.com>
Date: Tue, 11 Aug 2009 00:12:31 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :from:date:message-id:subject:to:content-type; bh=Ukk1n5ryn4mlC1fH3f+1XH6xKUSlUsTYWfb6rl8xnVY=; b=Stbwbka7l09RupivWVI/TiK5Jt7JMmrEPaJsjP6Z+IRKr/ibDRAEpVEILDi5CoMf/E PsRS0q2WiWggUv1jj6UAUpkxvBhp8hMzir5c27UD5TxhmgyDhInMI12F2jSBuwCslnP0 vKB/eoh62YBCmd84C2sRvD+wQ1a9Sb67Qg7LA=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; b=vVBJZR0NoJZv2P3RKgyksj7D9c0hRQXEeyXKzOLcNJQjcN54AKJycbJ10SUWOfmluN aMALvZvJ/vlAbcYONkVHtI3WC7+I579LLV2mukkR2Tk3t5YnNafkLmOj+DMQrCgVuwYJ Kev2D1GbXKHam+nfu/dEDnnwHKzFUK0i8QWzY=
In-reply-to: <87ws5btl2n.fsf@rubin.avci.de>
References: <1401255544-1249910948-cardhu_decombobulator_blackberry.rim.net-1991802318-@bxe1148.bisx.prod.on.blackberry> <358c9f370908101356h39ab7a12l5fe054f910ccb5db@mail.gmail.com> <87ws5btl2n.fsf@rubin.avci.de>

OpenLDAP is compiled with SASL support. I remember checking the box for SASL and if I cd /usr/ports/net/openldap24-server && make config I see that SASL is indeed marked. As far as checking for libgssapi, I ran the following to verify:

frisbee# locate libgssapi
/usr/lib/libgssapi.a
/usr/lib/libgssapi.so
/usr/lib/libgssapi.so.9
/usr/lib/libgssapi_krb5.a
/usr/lib/libgssapi_krb5.so
/usr/lib/libgssapi_krb5.so.9
/usr/local/lib/sasl2/libgssapiv2.a
/usr/local/lib/sasl2/libgssapiv2.la
/usr/local/lib/sasl2/libgssapiv2.so
/usr/local/lib/sasl2/libgssapiv2.so.2

On Mon, Aug 10, 2009 at 5:28 PM, Dieter Kluenter <dieter@dkluenter.de> wrote:

Allan <cr4z3d@gmail.com> writes:

> Thank you for the response. I ran the command and it looks like there's none supported.. This is strange.
> How can I allow GSSAPI?
>
> frisbee# /usr/local/bin/ldapsearch -x -H ldap://localhost -b "" -s base supportedSaslMechanisms
> # extended LDIF
> #
> # LDAPv3
> # base <> with scope baseObject
> # filter: (objectclass=*)
> # requesting: supportedSaslMechanisms
> #
>
> #
> dn:
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1

Is openldap compiled with sasl support?
is lib/sasl2/libgssapi or any other sasl mechanism available?

-Dieter

--

Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:8EF7B6C6
53°08'09,95"N
10°08'02,42"E

Follow-Ups:
- Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
  - From: "Dieter Kluenter" <dieter@dkluenter.de>
- Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

References:
- Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
  - From: Allan <cr4z3d@gmail.com>
- Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: Re: LDAP stopping without apparent reason
Next by Date: Re: OpenLDAP + Kerberos on FreeBSD 7.2, close to working but not quite
Index(es):
- Chronological
- Thread