[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAPv3 a nightmare

Quanah Gibson-Mount wrote:

Working SASL configuration, no -- cyrus-sasl comes with a test server & client you can use.

So I dont need to have saslauthd running for sasl binds?

And why does sasl use pam?

It doesn't.

saslauthd -v
saslauthd 2.1.14
authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap

It depends on the data you want to consolidate. Some Kerberos implementations (like Heimdal) can have a KDC in the LDAP directory.

I assume what you mean by have a KDC in LDAP is the keytabs and principals?
Is there a pro's and con's list on Heimdal vs MIT kerberos?