Hello Lars,
I corrected a little bug in my script so please use the new version
https://wp.tntnet.eu/?p=112 . The bug is only a problem in a multimaster setup,
cause the keytab is not updated correctly.
- Thorsten
Von meinem iPhone gesendet
> Am 08.11.2016 um 08:58 schrieb t Seeger
Hello,
You can add the principals under the users cn this is possible too. You just
need to specify the dn of the user, while adding it.
For GSSAPI I use the olcAuthzRegexp to transfer to the ldap objects. My
userPassword attribute looks like: {SASL}username@REALM.
-Thorsten
Von meinem
ldap_kerberos_container_dn = cn=KERBEROS,dc=microsult,dc=de made it
succeed.This is however not mentioned in the HOWTO.From the documentation of
-subtree I thought that the Principals would somehow be stored with the User
and Machine entries, i.e. not in a seperate tree. So the idea for GSSAPI
Hello,
We are getting random core dumps of httpd on our QA machines and I'm
trying to understand what could cause it.
We have some initialization code which calls set_com_err_hook() with a
static C++ class method, and the crash occurs right afterwards (looks
like com_err_initialize return error,
Hello,
did you create the /etc/krb5kdc/kdc.conf file? The Kerberos Containern dn is
setup there (ldap_kerberos_container_dn). And you need to use 'cn' for the
container this change some versions ago.
[dbmodules]
LDAP = {
db_library = kldap
ldap_kerberos_container_dn =