[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: newbie question - LDAP and Active Directory

To: <openldap-software@OpenLDAP.org>
Subject: Re: newbie question - LDAP and Active Directory
From: "Mark H. Wood" <mwood@IUPUI.Edu>
Date: Thu, 9 May 2002 17:10:18 -0500 (EST)
In-reply-to: <20020509212201.3374.qmail@web21206.mail.yahoo.com>

ldapsearch will use your Kerberos tickets if you have them.  You'd need to
have Kerberos clients installed on the system hosting your LDAP tools, and
have it configured to know where the KDCs are for your ADS realm.  Then
'kinit user@REALM' will get you a TGT from one of the ADS DCs.  After
that, the OpenLDAP tools should negotiate the necessary service ticket
and present it to the LDAP service with no further need for passwords.

Don't forget to kdestroy the ticket cache when you're done.

-- 
Mark H. Wood, Lead System Programmer   mwood@IUPUI.Edu
MS Windows *is* user-friendly, but only for certain values of "user".

Follow-Ups:
- Re: newbie question - LDAP and Active Directory
  - From: Dave Snoopy <kingsnoopy7@yahoo.com>
- Re: newbie question - LDAP and Active Directory
  - From: Andreas Hasenack <andreas@conectiva.com.br>

References:
- newbie question - LDAP and Active Directory
  - From: Dave Snoopy <kingsnoopy7@yahoo.com>

Prev by Date: Re: newbie question - LDAP and Active Directory
Next by Date: Re: newbie question - LDAP and Active Directory
Index(es):
- Chronological
- Thread