[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL support undocumented (ITS#792)

Full_Name: Graham Leggett
Version: 2.0.4
OS: LinuxPPC v2.2.18
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (

Compiling OpenLDAP with SASL support breaks the OpenLDAP setup instructions.

There is no reference that seems to be available to describe how an SASL
enabled OpenLDAP is to be set up. Following the quickstart instructions gets
you as far as starting up the server, but binding as anything other than
anonymous is impossible. As a result, it is impossible to populate the

I configured slapd.conf like this:

database        ldbm
suffix          "o=test.com"
#suffix         "o=My Organization Name, c=US"
rootdn          "cn=Directory Manager"
#rootdn         "cn=Manager, o=My Organization Name, c=US"
rootpw          secret

I then try to bind to the directory so that I can populate it with some
data, this fails:

[root@jessica openldap]# ldapmodify -x -D "cn=Directory Manager" -w
ldap_bind: Invalid credentials

The log file looks like this:

Sep 29 16:58:41 jessica slapd[16750]: conn=2 op=0 BIND dn="CN=DIRECTORY
MANAGER" method=128 
Sep 29 16:58:41 jessica slapd[16750]: conn=2 op=0 RESULT tag=97 err=49

The SASL libraries are installed but not configured. No documentation is
included on how to configure SASL for OpenLDAP.