Re: OpenLDAP2 and SASL/Kerberos

[Turbo Fredriksson <turbo@bayour.com>]

>>>>> "Turbo" == Turbo Fredriksson <turbo@bayour.com> writes:

    Turbo> Even more investigation reviles that the
    Turbo> sample-{server|client} from Cyrus-SASL does NOT work!

Got that fixed. It was something about the keytab that wasn't correct.
Using 'klist -k' and 'kvno ldap/...' etc revealed problems with the
version number... Strange...

But still no go... I have to give up for today, with a little luck
you guys haven't been killfiled me, and still are prepared to help :)

----- s n i p -----
CHROOT:/# ldapsearch -b "dc=com" -H ldaps:/// -I "(objectclass=*)"
SASL/GSSAPI authentication started
SASL Interaction
Please enter your authorization name: 
ldap_sasl_interactive_bind_s: Unknown authentication method
CHROOT:/# ldapsearch -x -b "" -s base -H ldaps:/// supportedSASLMechanisms -LLL
dn:
supportedSASLMechanisms: PLAIN
supportedSASLMechanisms: LOGIN
supportedSASLMechanisms: ANONYMOUS
supportedSASLMechanisms: GSSAPI
CHROOT:/tmp/sample# ldapsearch -b "dc=com" -H ldaps:/// -I "(objectclass=*)" -Y GSSAPI
SASL/GSSAPI authentication started
SASL Interaction
Please enter your authorization name: 
ldap_sasl_interactive_bind_s: Unknown authentication method
----- s n i p -----

-- 
 Turbo     __ _     Debian GNU     Unix _IS_ user friendly - it's just 
 ^^^^^    / /(_)_ __  _   ___  __  selective about who its friends are 
         / / | | '_ \| | | \ \/ /   Debian Certified Linux Developer  
  _ /// / /__| | | | | |_| |>  <  Turbo Fredriksson   turbo@tripnet.se
  \\\/  \____/_|_| |_|\__,_/_/\_\ Stockholm/Sweden