-Y GSSAPI fixed the ldap query. Thanks.
I figured out the problem with the ipa-getkeytab. In short, it was PEBKAC.
Thanks for the help.
On Thu, Nov 20, 2014 at 4:07 AM, Sumit Bose wrote:
> On Wed, Nov 19, 2014 at 09:55:51PM -0500, Richard Betel wrote:
> > I suddenly started getting errors when
On Wed, Nov 19, 2014 at 09:55:51PM -0500, Richard Betel wrote:
> I suddenly started getting errors when I try to use ipa-getkeytab:
>
> [root@ipa1 kerberize]# ipa-getkeytab -s jn01 -p hdfs/jn01 -k
> jn01.hdfs.keytab
> SASL Bind failed Can't contact LDAP server (-1) !
Please try to use the fully q
I suddenly started getting errors when I try to use ipa-getkeytab:
[root@ipa1 kerberize]# ipa-getkeytab -s jn01 -p hdfs/jn01 -k
jn01.hdfs.keytab
SASL Bind failed Can't contact LDAP server (-1) !
ldap seems to be answering on the non-SASL port (ei: ldapsearch -x -h
localhost CN=richard works fine)