On 10/06/14 13:27 -0400, Kristof Takacs wrote:
I am having issues when I have Kerberos bind and TLS turned on.
On 10/06/14 14:03 -0400, Kristof Takacs wrote:
I use the following version: - OpenLDAP (2.4.35), but I have tried 2.4.39 as well - Cyrus SASL (2.1.26) - OpenSSL (1.0.1h) - Heimdal ( I beleive 1.5.2)
There is a known bug in Cyrus SASL which triggers this problem: https://bugzilla.cyrusimap.org/show_bug.cgi?id=3480 If adding "-O maxssf=0" to your ldapsearch command, when using both Kerberos and TLS, works then that's likely the culprit. -- Dan White
