[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: PROBLEM: can't use SASL to authentication openldap client

To: openldap-technical@openldap.org
Subject: Re: PROBLEM: can't use SASL to authentication openldap client
From: "Dieter Kluenter" <dieter@dkluenter.de>
Date: Mon, 09 Aug 2010 13:11:26 +0200
In-reply-to: <D9224B7C263C0446ADF2F9E9F43463190501DD1D@CNSHGSMBS01.ad4.ad.alcatel.com> (LI Ji D.'s message of "Mon, 9 Aug 2010 16:56:40 +0800")
References: <516795048E5F5C4AB709C1012B9AEEB402651B67@mail-srv1.secumail.de> <D9224B7C263C0446ADF2F9E9F434631904CD7710@CNSHGSMBS01.ad4.ad.alcatel.com> <20100621170537.GB2425@dan.olp.net> <D9224B7C263C0446ADF2F9E9F434631904D0F925@CNSHGSMBS01.ad4.ad.alcatel.com> <87mxum3lt2.fsf@magenta.l4b.de> <D9224B7C263C0446ADF2F9E9F434631904D36FDD@CNSHGSMBS01.ad4.ad.alcatel.com> <87r5jx1xvh.fsf@magenta.l4b.de> <D9224B7C263C0446ADF2F9E9F434631904FF4762@CNSHGSMBS01.ad4.ad.alcatel.com> <878w4k6n8a.fsf@magenta.l4b.de> <D9224B7C263C0446ADF2F9E9F43463190501DB54@CNSHGSMBS01.ad4.ad.alcatel.com> <87d3ts9npv.fsf@magenta.l4b.de> <D9224B7C263C0446ADF2F9E9F43463190501DD1D@CNSHGSMBS01.ad4.ad.alcatel.com>
User-agent: Gnus/5.1008 (Gnus v5.10.8) XEmacs/21.5-b29 (linux)

"LI Ji D" <Ji.d.Li@alcatel-lucent.com> writes:

> Hi,
> 	My problem is that I expect slapd to authenticate with the
> password stored in sasldb. But it's not, it uses the password stored
> in userpassword attribute of this user which is a item of openldap.
> 	So I want to know, how can slapd use password stored in sasldb
> to do the sasl authentication.

Why do you store a password in the directory if you don't make use of
it? To delegate authentication to an external frame work, you should
tell slapd to do so. Please read the admin guide, in particular
section 14.5 Pass-Through authentication.

-Dieter

-- 
Dieter Klünter | Systemberatung
sip: 7770535@sipgate.de 
http://www.dpunkt.de/buecher/2104.html
GPG Key ID:8EF7B6C6

References:
- RE: PROBLEM: can't use SASL to authentication openldap client
  - From: "LI Ji D" <Ji.d.Li@alcatel-lucent.com>
- Re: PROBLEM: can't use SASL to authentication openldap client
  - From: "Dieter Kluenter" <dieter@dkluenter.de>
- RE: PROBLEM: can't use SASL to authentication openldap client
  - From: "LI Ji D" <Ji.d.Li@alcatel-lucent.com>
- Re: PROBLEM: can't use SASL to authentication openldap client
  - From: "Dieter Kluenter" <dieter@dkluenter.de>
- RE: PROBLEM: can't use SASL to authentication openldap client
  - From: "LI Ji D" <Ji.d.Li@alcatel-lucent.com>

Prev by Date: RE: PROBLEM: can't use SASL to authentication openldap client
Next by Date: Multiple Admin
Index(es):
- Chronological
- Thread