Dan White wrote: > On 30/06/10 18:43 +0200, Michael Ströder wrote: >> He would also have to specify -Y GSSAPI. >> And off course slapd has to be kerberized first to make this work. > > Presumably he is doing plaintext authentication to slapd rather than > gssapi, and having saslauthd validate the username and password against > a kerberos5 server.
Why do you think so? Diego mentioned kinit and klist in the original posting: http://www.openldap.org/lists/openldap-technical/201006/msg00301.html Therefore I presume he wants to use SASL/GSSAPI. But only he can tell us what he really wants to achieve. Ciao, Michael.
