Il 10/12/2013 11:20, Xavier Beaudouin ha scritto:
> Hi,
>
> I can confirm that samba 4.1 needs GSSAPI connection.
>
> Now I have to figure how to config it under LSC (my configuration
> issue now is fixed), but I have this issue now with "ldap" with samba
> 4.1
I must apologize twice: first because I tried to setup GSSAPI without
luck, second because I spread the false word of mouth that samba4
requires GSSAPI, while it's true quite the opposite.
In fact when you both require GSSAPI and ldaps (for example:
ldapsearch -Y GSSAPI -H ldaps://samba4.example.org -b
dc=ad,dc=example,dc=org)
I obtain:
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s: Server is unwilling to perform (53)
additional info: SASL:[GSSAPI]: Sign or Seal are not allowed if TLS is
used
(samba-4.1.2)
On the other hand SIMPLE auth with ldaps works (you can try with
ldapsearch).
Now I have the provisioning spep openldap -> ad working.
Unfortunately the clean step is completely wrong, but this is another
matter.
ciao,
Francesco
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
