[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Krb5 TGT location question

To: "OpenLDAP Software List" <OpenLDAP-software@OpenLDAP.org>
Subject: Re: Krb5 TGT location question
From: "Jeremiah Martell" <inlovewithgod@gmail.com>
Date: Fri, 22 Sep 2006 11:51:58 -0400
Content-disposition: inline
In-reply-to: <7.0.1.0.0.20060922084440.03a587c0@OpenLDAP.org>
References: <233eb300609220646v26953851jd826eb7bd78722fb@mail.gmail.com> <7.0.1.0.0.20060922084440.03a587c0@OpenLDAP.org>

Hmmm. So when I do a LDAP+SASL+GSSAPI(Kerberos) bind, openldap just
talks to the Kerberos library to do all things kerberos?

What about using the Kerberos service ticket to bind to the server?

 Thanks,
- Jeremiah

On 9/22/06, Kurt D. Zeilenga <Kurt@openldap.org> wrote:

At 06:46 AM 9/22/2006, Jeremiah Martell wrote:
>I've got code that does a successful LDAP+GSSAPI(Kerberos) bind. :-)
>
>But I'm not sure exactly how openldap knows where my TGT is?

OpenLDAP Software doesn't know or care where your TGT is.
Your TGT is between you and your Kerberos implementation.

>With
>Kerberos I do a krb5_cc_default to store the TGT in the "default"
>location, whereever that is. And I never tell openldap where to find
>it. I don't see any environmental variable that says where it is
>either.
>
>Does openldap just have standard locations it looks in? Or.... ?
>
>  Thanks,
>- Jeremiah :)

References:
- Krb5 TGT location question
  - From: "Jeremiah Martell" <inlovewithgod@gmail.com>
- Re: Krb5 TGT location question
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: Krb5 TGT location question
Next by Date: Re: statistiques ?
Index(es):
- Chronological
- Thread