[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: only Kerberos authentication

To: tandersson@nostalgie.fr
Subject: Re: only Kerberos authentication
From: Sensei <senseiwa@tin.it>
Date: Wed, 28 Jul 2004 16:46:52 +0200
Cc: OpenLDAP <openldap-software@OpenLDAP.org>
In-reply-to: <200407281023.1d5d@th00.idoo.com>
References: <200407281023.1d5d@th00.idoo.com>

On Wed, 2004-07-28 at 12:23, tandersson@nostalgie.fr wrote:
> How can I set only gssapi authentication for Openldap?

After the database:

sasl-host your.host.name
sasl-realm YOUR.REALM
sasl-secprops none
srvtab /etc/ldap/ldap.keytab

If you use ldap 2.2 and above, you can use regexp for username matching
with k5 principal, otherwise, if you use openldap from debian stable (as
I do), your suffix/basedn MUST be empty.
-- 
Sensei    <mailto:senseiwa@tin.it>
          <icqnum:241572242>
          <msn-id:Sensei_Sen@hotmail.com>
Error: Keyboard not found. Press F1 to continue...

Follow-Ups:
- Re: only Kerberos authentication
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

References:
- only Kerberos authentication
  - From: <tandersson@nostalgie.fr>

Prev by Date: (pas de sujet)
Next by Date: Re: Add autofs schema to existing
Index(es):
- Chronological
- Thread