[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldapsearch + gssapi: can't contact ldap server

I'm stumbling on the following error from ldapsearch (openldap-2.0.25,
sasl-1.5.27, krb5-1.2.5):

$ ldapsearch -LLL uid=mala
SASL/GSSAPI authentication started
SASL installing layers
ldap_result: Can't contact LDAP server

The search works if using simple bind. The server logs for this search:
slapd[22516]: daemon: conn=3 fd=11 connection from IP=x.x.x.x:4161 (IP= accepted. 
slapd[22522]: conn=3 op=0 SRCH base="" scope=0 filter="(objectClass=*)" 
slapd[22522]: conn=3 op=0 RESULT tag=101 err=0 text= 
slapd[22531]: conn=3 op=1 BIND dn="" method=163 
slapd[22522]: conn=3 op=2 BIND dn="" method=163 
slapd[22531]: conn=3 op=3 BIND dn="" method=163 
slapd[22516]: conn=-1 fd=11 closed 

A blank dn? (dn="") It seems to be trying to login several times.

ldapsearch gets me the ldap service ticket:
07/10/02 15:09:31  07/10/02 23:09:31  krbtgt/DOMAIN@REALM
07/10/02 15:09:34  07/10/02 23:09:31  ldap/ldap.server@REALM

Any clues?