[Date Prev][Date Next]
Re: LDAPv3: The OpenLDAP/Kerberos/SASL soup (was Kerberos and DIGEST-MD5)
--On Wednesday, July 28, 2004 8:05 PM +0200 Jose Gonzalez Gomez
I hope this helps to anyone trying to setup a Kerberos/OpenLDAP/SASL
It probably does for those trying to run a KDC on top of OpenLDAP. It kind
of depends on what you want to do. We run an MIT KDC, and use GSSAPI with
OpenLDAP just fine. We simply configure PAM to authenticate to the KDC for
getting passwords, rather than going through LDAP. It works quite well.
We also have SSO throughout the university. You may find:
<http://webauthv3.stanford.edu> of interest if you wish to use your
OpenLDAP servers & your KDC to authenticate/restrict access to websites.
Principal Software Developer
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html