[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: kerberos authentication disables normal operation?

<Kent_Wu@trendmicro.com> writes:

> Hi,
> 	I tried to use LDAP SDK to connect to AD, the odd thing is if
> I adopts simple authentication by using ldap_simple_bind_s() then I
> can search, compare, ..etc. However if I use kerberos authentication
> by using GSS-API and ldap_sasl_bind_s(), it would pass the
> authentication phase however while doing the search, no entry was
> returned even though the criteria are the same as simple
> authentication one. Here in Kerberos authentication I use
> "ldap@realm_name" as the service name.

You should create a 'service/host@REALM' principal. That is


Dieter Kluenter  | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter@schevolution.com