Re: pass-through authentication

Wed, 30 Dec 2015 16:30:31 -0800 

I'm still having troubles with pass-through SASL on RHEL

testsaslauthd produces this message :
    0: NO "authentication failed"

With this in the system log :
          saslauthd logs reason=Unknown

When saslauthd is launched in verbose mode and followed
by testsaslauthd  it prints :

connect() : No such file or directory


Tim


On Thu, Dec 24, 2015 at 1:46 PM, Timothy Keith <[email protected]>
wrote:

> As per my ongoing LDAP SASL design question, can anyone recommend a good
> tutorial for pass-through authentication ?
>
> Tim
>
> On Tue, Dec 22, 2015 at 2:47 PM, Timothy Keith <[email protected]>
> wrote:
>
>> Uwe, your assistance could be very helpful.   I followed Open LDAP
>> tutorials but could not determine why the SASL requests fail.   I am a
>> newcomer to LDAP.
>>
>> Tim
>>
>> On Mon, Dec 21, 2015 at 12:04 PM, Hering, Uwe <[email protected]> wrote:
>>
>>> Hello Tim,
>>>
>>> we have set up such a setup where one can authenticate against OpenLDAP
>>> which redirects the request via saslauthd/kerberos to an AD server. Within
>>> the AD a service account with corresponding keytab will be necessary.
>>>
>>> If you are interested I can try to get the pieces of information
>>> together again.
>>>
>>> Regards,
>>>
>>> Uwe
>>>
>>> -----Ursprüngliche Nachricht-----
>>> Von: openldap-technical [mailto:[email protected]]
>>> Im Auftrag von Timothy Keith
>>> Gesendet: Freitag, 18. Dezember 2015 01:33
>>> An: [email protected]
>>> Betreff: pass-through authentication
>>>
>>> We are attempting to set up an LDAP server which will answer queries
>>> from an application. The database will contain metadata on a set of users
>>> in the application. The application will also query the server to
>>> authenticate the user’s password, however, this server will not house the
>>> password. That resides on another server, which our server
>>> will query.   We do not have administrative rights to the other
>>> server.
>>>
>>>  The difficulty we are having now is setting up the pass-through
>>> authentication for the passwords. Any pointers in how to proceed with this
>>> would be greatly appreciated.
>>>
>>> Regards,
>>>
>>> Tim
>>>
>>>
>>
>

Reply via email to