[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: kadmin: kadm5_create_principa: ldap_add_s: Can't contact LDAP server

Hi Howard,

>Furthermore, Heimdal's hdb-ldap backend uses
>SASL/EXTERNAL so you must be able to verify this
>method using ldapsearch if you want hdb-ldap to 

Does this mean that storing the principal's
credentials in LDAP backend is done by using
SASL/EXTERNAL and not using simple bind ?


--- Howard Chu <hyc@highlandsun.com> wrote:
> > -----Original Message-----
> > From: owner-heimdal-discuss@sics.se
> > [mailto:owner-heimdal-discuss@sics.se]On Behalf Of
> Gémes Géza
> > Recent openldap client software wants to auth by
> sasl by
> > default. Please disble it specifying the -x flag.
> >
> > ldapsearch -H 'ldapi:///' -x
> No.
> Changing the Bind method will not affect an "Unable
> to contact the server"
> error. Obviously if the client cannot connect, then
> its choice of Bind method
> is irrelevant.
> Furthermore, Heimdal's hdb-ldap backend uses
> SASL/EXTERNAL so you must be
> able to verify this method using ldapsearch if you
> want hdb-ldap to work.
>   -- Howard Chu
>   Chief Architect, Symas Corp.       Director,
> Highland Sun
>   http://www.symas.com              
> http://highlandsun.com/hyc
>   Symas: Premier OpenSource Development and Support

La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
                                                                        - Guy de Maupassant -

Do you Yahoo!?
Yahoo! Tax Center - File online by April 15th