At the moment I use Authen:SASL as follows
use Net::LDAPS;
use Authen::SASL;
use Authen::Krb5;
....
$ldap = Net::LDAPS->new( $server,
port => 636,
timeout => 2,
verify => 'never',
version => 3) or die "$@";
$sasl = Authen::SASL->new('GSSAPI', 'user' => '');
$mesg = $ldap->bind( '',
sasl => $sasl) ;
$mesg->code && die $mesg->error;
...
and get the error:
00002029: LdapErr: DSID-0C09016D, comment: Cannot start kerberos
signing/sealing when using TLS/SSL, data 0, vece at ./LDAP-AD-query.pl line
82.
I read that there is a property setting possible with Authen::SASL but can't
find an example how to outside of Net::LDAP.
Would it be possible to modify Net::LDAP to set SSF to 0 if LDAPS or
start_tls is used ?
Thank you
Markus
