Awesome, thanks!
On Wed, Feb 6, 2019 at 2:32 AM t Seeger wrote:
> Hey Yegui,
>
> You can find the script here https://wp.tntnet.eu/?p=112
> There is a very short instruction too. Keep in mind that I m not a ldap or
> Kerberos expert. ^^
>
> Thor
>
> On 6. Feb 2019, at 03:37, Yegui Cai wrote:
>
I'm not sure whats going on with the error message you are seeing.
AS far as how to info: The hortonworks community has a walkthrough of MIT
KDC with LDAP backend on CentOS7, here:
https://community.hortonworks.com/articles/199542/configuring-kerberos-with-openldap-back-end.html
On Tue, Feb 5, 2
Thanks for the replies. I had found a walkthrough on setting up LDAP on
it's own on that site too:
https://community.hortonworks.com/articles/79806/how-to-setup-openldap-24-on-centos-7.html
And that explained how to set up the user with the access I needed - that
got me past that error from my las
On 2/5/19 9:30 PM, John Byrne wrote:
> I'm trying to test constrained
> delegation in a web application, and apparently that only works with the
> LDAP backend.
Hi all,
is this still true for 1.17?
- Mark
Kerberos mailing list Kerber
In case anyone has a similar issue, I was able to get it set up eventually.
The problem was that I needed to create the "dc=example,dc=com" entry
first. I don't understand why I was able to create a rootdn user called
"cn=admin,dc=example,dc=com" if "dc=example,dc=com" doens't exist, but
anyway I c
Hi,
I've set up a KDC using LDAP as the backend (krb5 1.15.1 on CentOS 7), and
I'm trying to perform constrained delegation. However, I'm getting this
error from the KDC when the intermediate service calls the step() function
on the security context: "KDC policy rejects request"
Here's the KDC lo
I figured it out, and it's working for me now.
For anyone else who's having this issue, there are 2 separate things you
have to set up to allow an intermediate service to impersonate a user:
* the ok_to_auth_as_delegate flag (in kadmin)
* an access control list in ldap.
I wasn't sure if editing
