I'm trying to set up my ldap directory to use kerberos passwords. I have compiled openldap with --with-kpasswd, added the principal ldap/[EMAIL PROTECTED] to kerberos. Also, I have prepared the user entries in LDAP with these fields (in addition to other ones):
objectClass: krb5Principal krb5PrincipalName: [EMAIL PROTECTED] cn: Diego Lima userPassword: [EMAIL PROTECTED] I could contact the server using: ldapsearch -H ldap://iceage.sg.org.br/ -x -b "" -s base -LLL supportedSASLMechanisms and it returned dn: supportedSASLMechanisms: GSSAPI However when I try to use the kerberos database I get this error: iceage:/etc/ldap# ldapsearch -H ldap:/// -I -b "" -s base -LLL supportedSASLMechanisms SASL/GSSAPI authentication started SASL Interaction Please enter your authorization name: diego ldap_sasl_interactive_bind_s: Local error (-2) additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (Server not found in Kerberos database) Any ideas? Thanks! -- Diego Lima http://sg.homelinux.com:81
pgp2rt1qWOTyB.pgp
Description: PGP signature
________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
