[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch + read-only domain controller: cannot bind

To: openldap-technical@openldap.org
Subject: Re: ldapsearch + read-only domain controller: cannot bind
From: Dieter Klünter <dieter@dkluenter.de>
Date: Wed, 22 Jun 2016 10:28:33 +0200
In-reply-to: <1990811466499335@web23o.yandex.ru>
Organization: AVCI
References: <3550941465644446@web21h.yandex.ru> <57654311.7030500@mproehl.net> <1990811466499335@web23o.yandex.ru>

Am Tue, 21 Jun 2016 11:55:35 +0300
schrieb l@avc.su:

> Hi Mark.
> 
> Thank you, looks like the problem is not related to OpenLDAP package.
> I've tried to get a service ticket for
> ldap/dc.contoso.com@CONTOSO.COM, but to no avail:
[...]

As i mentioned in my first post, linux kerberized clients require a
host principal and a service principal. Read the Microsoft docs on
kerberos services for Unix.

-Dieter

-- 
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:DA147B05
53°37'09,95"N
10°08'02,42"E

Follow-Ups:
- Re: ldapsearch + read-only domain controller: cannot bind
  - From: Mark Pröhl <mark@mproehl.net>

References:
- ldapsearch + read-only domain controller: cannot bind
  - From: l@avc.su
- Re: ldapsearch + read-only domain controller: cannot bind
  - From: Mark Pröhl <mark@mproehl.net>
- Re: ldapsearch + read-only domain controller: cannot bind
  - From: l@avc.su

Prev by Date: Re: openldap 2.4.44 - delta-syncrepl fails on auditContext
Next by Date: Re: Schema's not importing correctly?
Index(es):
- Chronological
- Thread