[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP+SSL+Kerberos against AD

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: OpenLDAP+SSL+Kerberos against AD
From: Antti Tikkanen <antti.tikkanen@hut.fi>
Date: Thu, 13 Jun 2002 14:57:01 +0300 (EET DST)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <5.1.0.14.0.20020612125514.02466f28@127.0.0.1>

On Wed, 12 Jun 2002, Kurt D. Zeilenga wrote:

> It appears that after negotiating and installing SASL security layers
> on an LDAP over SSL (ldaps://), the client made a search request.
> Then server has apparently closed the connection.  You might check the
> server logs...
> 
> You might try disabling SASL security layers, -O maxbufsize=0.

Somehow that didn't work, but instead '-O maxssf=0' did the trick. Thanks! 

I am pretty certain this is a feature with AD: you cannot use both SASL
security layers and SSL at the same time. Or if someone has managed to get
that working, correct me. Perhaps that could be documented somewhere?

Antti

-- 

Antti.Tikkanen@hut.fi 
Helsinki University of Technology 
Computing Centre

References:
- Re: OpenLDAP+SSL+Kerberos against AD
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: indexes
Next by Date: Re: LDAP ssl over PHP
Index(es):
- Chronological
- Thread