[Date Prev][Date Next] [Chronological] [Thread] [Top]

ssl/tls problem



Hi all

Iam setting up openldap with gssapi and tls/ssl i have some problems and do hope that i will get a solution here

iam getting

[root@ldap-test-cs-ec myca]# ldapsearch -H ldaps://ldap-test-cs-ec.ec.auckland.ac.nz/ -I -b "dc=cs,dc=auckland,dc=ac,dc=nz" supportedSASLMechanisms -v
ldap_initialize( ldaps://ldap-test-cs-ec.ec.auckland.ac.nz/ )
SASL/GSSAPI authentication started
SASL Interaction
Please enter your authorization name: pche066
ldap_sasl_interactive_bind_s: Insufficient access (50)
additional info: SASL(-14): authorization failure: Inappropriate authentication


and if i enable access list in my slapd.conf (just to test)  as
access to  *
       by  * auth
	by  * read

i still get the same error , i can sucessfully get the tickets by running kinit for the principal pche066 also i can sucessfully see the ldapsearch results with -Y gssapi


any help would be greatly appreciated

Regards

-Bobby