Nope. Same error occurs when I do
ldapsearch -LLL -h <ip-address> -b <base-dn> -Y GSSAPI -X "dn:<dn-to-
user>" "objectclass=user" +
Returns
-----------------------------------
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s: Invalid credentials
additional info: 8009030B: LdapErr: DSID-0C09043E, comment:
AcceptSecurityContext error, data 7a, vece
-----------------------------------
I think there is something missing in my configuration.
Kashif.
On Aug 7, 3:52 pm, Michael Ströder <[EMAIL PROTECTED]> wrote:
> Kashif Ali Siddiqui wrote:
> > On Aug 7, 12:14 am, Michael Ströder <[EMAIL PROTECTED]> wrote:
> >> Kashif Ali Siddiqui wrote:
>
> >>> I have created A and PTR nodes in the Forward and Reverse Lookup in
> >>> DNS, and using dig command, I have successfully test forward and
> >>> reverse lookups and they are success. But still the same error
> >>> persists.
> >> What does klist say after trying the SASL/GSSAPI bind? Do you have a
> >> service ticket?
>
> > Yes, even my ldap_sasl_interactive_bind fails with 0x31 (Invalid
> > credentials) return code and the detail error message as mentioned
> > above in my posting, I am still getting the service ticket (for ldap)
> > in the process and it is in my krb cache when i execute klist.
>
> And does it work when using the Mozilla LDAP command-line tool
> 'ldapsearch'? If yes, something's wrong in your code (with which I can't
> help).
>
> Ciao, Michael.
_______________________________________________
dev-tech-ldap mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-ldap
