On 07/25/2012 02:20 PM, Javier Palacios wrote:
> OK. But as far as I understand, SASL EXTERNAL is somewhat equivalent to
> ldapi, and documentation states that ldapi is a valid protocol to
> communicate with ldap, which does not look the case.
That does not precisely match my understanding.
ldapi
On Wed, 2012-07-25 at 20:20 +0200, Javier Palacios wrote:
> On Wed, Jul 25, 2012 at 6:13 PM, Greg Hudson wrote:
>
> > On 07/25/2012 05:26 AM, Javier Palacios wrote:
> > > But looks like ldapi is just ignored by kdb5_ldap_util. Does anyone else
> > > have some idea or should I file a bug report?
>
On Wed, Jul 25, 2012 at 6:13 PM, Greg Hudson wrote:
> On 07/25/2012 05:26 AM, Javier Palacios wrote:
> > But looks like ldapi is just ignored by kdb5_ldap_util. Does anyone else
> > have some idea or should I file a bug report?
>
> We don't have support for SASL authentication in our LDAP back en
On 07/25/2012 05:26 AM, Javier Palacios wrote:
> But looks like ldapi is just ignored by kdb5_ldap_util. Does anyone else
> have some idea or should I file a bug report?
We don't have support for SASL authentication in our LDAP back end, so
the KDC can't use SASL EXTERNAL to autobind over ldap. S
On Tue, Jul 24, 2012 at 6:09 PM, Oliver Loch wrote:
> you have to map the local UID to the corresponding ldap-user.
>
>
ldapi was working right (I've done a similar job using heimdal instead of
MIT).
But looks like ldapi is just ignored by kdb5_ldap_util. Does anyone else
have some idea or shoul
Hi,
you have to map the local UID to the corresponding ldap-user.
Turn on OpenLDAP's debugging, "slapd -d ?" will help, and check the logs for
auth requests.
When you see the local system user's uid you can map that to any LDAP user via
the authz-regexp rules.
Read about the authz-* options i
On 07/24/2012 11:56 AM, Javier Palacios wrote:
> Trying to use
> kdb5_ldap_util -H ldapi:/// create -r DOMAIN.LOCAL -s
> gives an 'LDAP bind dn value missing' error, although ldapi is working
> correctly.
>
> Is there any special setup required to use ldapi ??
Nothing special, but you still have
Hola Javier,
> I'm trying to setup a krb5 server with openldap backend. According to
> documentation seems that ldapi is a valid method to connect, but I'm not
> able to create the database.
>
> Trying to use
> kdb5_ldap_util -H ldapi:/// create -r DOMAIN.LOCAL -s
> gives an 'LDAP bind dn value m
Hello,
I'm trying to setup a krb5 server with openldap backend. According to
documentation seems that ldapi is a valid method to connect, but I'm not
able to create the database.
Trying to use
kdb5_ldap_util -H ldapi:/// create -r DOMAIN.LOCAL -s
gives an 'LDAP bind dn value missing' error, altho
