[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: pass-through authentication

You can view your config with:

slapcat -n0

And verify that object exists.

If you're receiving this error due to an ACL problem, verify you
have the proper configuration in place to authenticate as the rootdn using
sasl/external. See the slapd-config manpage, and see section 15.2 (and in
particular 15.2.5) of the Administrator's guide, and reference your
OS/distro documentation.

On 01/21/16 12:35 -0600, Timothy Keith wrote:
I commented the  mech_list in slapd.conf

The ldapsearch result is now No such object

ldapsearch -LLLQY EXTERNAL -H ldapi:/// -b cn=config
No such object (32)

On Fri, Jan 8, 2016 at 2:34 PM, Dan White <dwhite@cafedemocracy.org> wrote:
On 01/07/16 17:24 -0600, Timothy Keith wrote:

ldapsearch -LLLQY EXTERNAL -H ldapi:/// -b cn=config
ldap_sasl_interactive_bind_s: Authentication method not supported (7)
       additional info: SASL(-4): no mechanism available:

I'm missing some context here. Most likely you have a mech_list hard coded
in your slapd.conf sasl, which does not include the external mech.