[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: kpasswd

To: openldap-software@OpenLDAP.org
Subject: Re: kpasswd
From: Frank Swasey <Frank.Swasey@uvm.edu>
Date: Tue, 21 Oct 2003 07:49:31 -0400 (EDT)
In-reply-to: <C484966C-00F4-11D8-8830-000393033826@indiana.edu>
References: <C484966C-00F4-11D8-8830-000393033826@indiana.edu>

On Fri, 17 Oct 2003 at 5:53pm, Allan Streib wrote:

> http://www.openldap.org/faq/data/cache/944.html

First a big thank you to Allan for taking the time to document what he
did.

However, even though I have followed the directions in that faq (and all
the previous posts in this discussion thread).  It's still failing for
me.

I am using the stock RedHat 9 cyrus-sasl 2.1.10 and MIT Kerberos 5.  I
have built my own openldap 2.1.22 (based on the RedHat beta source)

I am running saslauthd with -a kerberos5

testsaslauthd works correctly (/etc/krb5.keytab has the host entry)

I have a /usr/lib/sasl2/slapd.conf which contains
pwcheck_check: saslauthd
saslauthd_path: /var/run/saslauthd

I have rebuilt openldap 2.1.22 with --enable-spasswd to get the {SASL}
function included.

I have changed my test entry to have a userpassword of
{SASL}testid@realm instead of {KERBEROS}testid@realm

However, attempts to authenticate are not working.  They fail with
the invalid credentials error and the syslog output says that openldap
is still trying to find /etc/sasldb2.

What have I messed up?

-- 
Frank Swasey                    | http://www.uvm.edu/~fcs
Systems Programmer              | Always remember: You are UNIQUE,
University of Vermont           |    just like everyone else.
                    === God Bless Us All ===

Follow-Ups:
- Re: kpasswd
  - From: Igor Brezac <igor@ipass.net>

References:
- Re: kpasswd
  - From: Allan Streib <astreib@indiana.edu>

Prev by Date: Re: Extra output from ldap_search ?
Next by Date: Looking for proven version
Index(es):
- Chronological
- Thread