On 02/02/12 16:24 +0530, Gaurav Gugnani wrote:Use pluginviewer (or possibly saslpluginviewer) to verify that digest-md5
Hello,
I too suppose that my package is missing for cyrus-sasl DIGEST MD5.
I'm working on linux 86_64 machine and want to implement DIGEST MD5
mechanism.
Following packages are installed:
/u01/app/openldap/product/2.4.26/etc/openldap>rpm -qa | grep cyrus-sasl
cyrus-sasl-devel-2.1.22-5.el5_4.3
cyrus-sasl-plain-2.1.22-5.el5_4.3
cyrus-sasl-lib-2.1.22-5.el5_4.3
cyrus-sasl-devel-2.1.22-5.el5_4.3
cyrus-sasl-lib-2.1.22-5.el5_4.3
cyrus-sasl-plain-2.1.22-5.el5_4.3
cyrus-sasl-2.1.22-5.el5_4.3
is installed. If not, you'll need to find out which package you need from
your distribution's support.
Once installed, and verified using pluginviewer, verify that slapd is
offering the mechanism with:
ldapsearch -x -H ldap://ldap.example.net -s "base" "supportedSASLMechanisms"
Please suggest, if package is missing or will the DIGEST MD% mechanism
works with this cyrus-sasl modules.
Thanks for your help.
Regards,
Gaurav Gugnani
On Thu, Feb 2, 2012 at 4:03 PM, Raffael Sahli <public@raffaelsahli.com>wrote:
On 02/02/2012 10:40 AM, Gaurav Gugnani wrote:*Step-1:*
Hello All,
After some more research into it and reading some more links:
http://www.linuxtopia.org/online_books/network_administration_guides/ldap_administration/sasl_SASL_Authentication.html
http://tldp.org/HOWTO/LDAP-HOWTO/sasl.html
I did some more steps like-
In the file slapd.conf i add following lines:
password-hash {CLEARTEXT}
sasl-regexp uid=(.*),cn=DIGEST-MD5,cn=auth uid=$1,ou=System,o=db
And perform ldapsearch in different way:
ldapsearch -Y DIGEST-MD5 -U sasluser2 -b 'o=db'
But again got error as:
ldap_sasl_interactive_bind_s: Unknown authentication method (-6)
additional info: SASL(-4): no mechanism available: No worthy mechs
found
Did you installed the sasl modules? (On debian the package name is
libsasl2-modules )
Please help in getting out of this issue.
Thanks and Regards,
Gaurav Gugnani
--
Raffael Sahlipublic@raffaelsahli.com
--
Dan White