[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP

Quanah Gibson-Mount wrote:
No. And when you build OpenLDAP with Kerberos support, make sure you use Heimdal K5 and not MIT K5 at this time.

Its not the OpenLDAP build that's the issue, but the Cyrus SASL one (the Kerberos calls come from SASL, not OpenLDAP). If you patch Cyrus SASL (my patches are available upon request) to mutex protect all of the calls to the GSSAPI libraries then you can run with MIT Kerberos without any issues.