[Date Prev][Date Next] [Chronological] [Thread] [Top]

replication with SASL/GSSAPI


Is anybody doing LDAP database replication using SASL/GSSAPI bind to
slave?  I'm stuck trying to get a clue to it.

As far as I understand a client needs a valid TGT in order for
SASL/GSSAPI authentication to succeed.  This does work with
ldapsearch/ldapmodify when run by a user with a ticket cache holding a
valid TGT.  However, slurpd is run at system startup and has no way of
obtaining a TGT and keeping it valid.  How do people solve this