Hmm,
Do your cn=config databases match?
Do you know what that hashed password actually is? Can you manually bind with
that username/pw and ldapsearch?
Matt Pallissard
On Thu, 2017-04-13 at 14:02 +0200, Jaap Winius wrote:
> Quoting "Pallissard, Matthew" <k...@pallissard.net>:
>
> > What does your olcSyncrepl line for dc=example,dc=com look like?
>
> olcSyncrepl: {0}rid=123 provider="ldap://klsm.example.com:389/";
> type=refreshAn
> dPersist retry="60 30 300 +" searchbase="dc=example,dc=com"
> bindmethod=sasl s
> aslmech=gssapi
>
> The OpenLDAP configuration works, as far as I can tell, since I was
> able to pull in a copy of the DIT, which includes the Kerberos
> database.
>
> Cheers,
>
> Jaap
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
