[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Getting LDAP and SASL (digest-md5) to play nice

Rick Stevens wrote:
I'm sure I'm not the only person having this issue, but I absolutely
cannot seem to get SASL and LDAP to work.  I want SASL to authenticate
using the passwords in LDAP, but in the classic chicken-and-egg
scenario, you can't talk to LDAP without having SASL working first.

It works for me.

I have the authz-regexp stuff set up and the ldapwhoami seems to show me
as being converted from the "uid=username,cn=digest-md5,cn=auth" thing
to "uid=username,ou=people,dc=mydomain,dc=com", but ONLY if I've put a
user and password into the saslpasswd2 database.  If I don't do that,
I get invalid SASL credentials on the ldapwhoami.

I have no saslpasswd2 file at all. Make sure you store the password as clear-text in attribute userPassword.

Ciao, Michael.