[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: can't get slapd to do pass-through authentication

To: Dieter Kluenter <dieter@dkluenter.de>
Subject: Re: can't get slapd to do pass-through authentication
From: Brent Bice <bbice@sgi.com>
Date: Wed, 04 Aug 2010 14:54:29 -0700
Cc: openldap-technical@openldap.org
In-reply-to: <87wrs9v8oi.fsf@magenta.l4b.de>
References: <4C521855.70307@sgi.com> <87wrs9v8oi.fsf@magenta.l4b.de>
User-agent: Thunderbird 2.0.0.24 (X11/20100411)

Dieter Kluenter wrote:

Did you create a lib/sasl2/slapd.conf, or wherever your sasl
configuration files are located?


   I created a lib/sasl2/slapd.conf file again and in it specified:
pwcheck_method:	saslauthd
saslauthd_path:	/var/state/saslauthd/mux

And I confirmed that that is, indeed, the path that saslauthd islistening on (it shows when I run saslauthd with the -d -V flags). Butwhen I ask OpenLDAP to authenticate a user whose userPassword attributeis {SASL}bbice@ldap the saslauthd daemon shows no sign of havingreceived an auth request.

If I run testsaslauthd -u bbice, however, the authentication worksok and saslauthd shows testsaslauthd connecting to it. So it appearsslapd isn't contacting saslauthd at all? How does slapd determine whatpath to use for the saslauthd socket? lib2/sasl/slapd.conf? Orsaslauthd.conf?


Brent

Follow-Ups:
- Re: can't get slapd to do pass-through authentication
  - From: Dan White <dwhite@olp.net>

References:
- can't get slapd to do pass-through authentication
  - From: Brent Bice <bbice@sgi.com>
- Re: can't get slapd to do pass-through authentication
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: Re: using ldap to control access to other services
Next by Date: Re: Proxycache overlay to back-ldap with cn=config
Index(es):
- Chronological
- Thread