[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
replication with SASL/GSSAPI
Hi!
Is anybody doing LDAP database replication using SASL/GSSAPI bind to
slave? I'm stuck trying to get a clue to it.
As far as I understand a client needs a valid TGT in order for
SASL/GSSAPI authentication to succeed. This does work with
ldapsearch/ldapmodify when run by a user with a ticket cache holding a
valid TGT. However, slurpd is run at system startup and has no way of
obtaining a TGT and keeping it valid. How do people solve this
problem?
Cheers,
Roman.