[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: kpasswd



On Tue, 21 Oct 2003, Frank Swasey wrote:

> On Fri, 17 Oct 2003 at 5:53pm, Allan Streib wrote:
>
> > http://www.openldap.org/faq/data/cache/944.html
>
> First a big thank you to Allan for taking the time to document what he
> did.
>
> However, even though I have followed the directions in that faq (and all
> the previous posts in this discussion thread).  It's still failing for
> me.
>
> I am using the stock RedHat 9 cyrus-sasl 2.1.10 and MIT Kerberos 5.  I
> have built my own openldap 2.1.22 (based on the RedHat beta source)
>
> I am running saslauthd with -a kerberos5
>
> testsaslauthd works correctly (/etc/krb5.keytab has the host entry)
>
> I have a /usr/lib/sasl2/slapd.conf which contains
> pwcheck_check: saslauthd
> saslauthd_path: /var/run/saslauthd

You need
saslauthd_path: /var/run/saslauthd/mux


>
> I have rebuilt openldap 2.1.22 with --enable-spasswd to get the {SASL}
> function included.
>
> I have changed my test entry to have a userpassword of
> {SASL}testid@realm instead of {KERBEROS}testid@realm
>
> However, attempts to authenticate are not working.  They fail with
> the invalid credentials error and the syslog output says that openldap
> is still trying to find /etc/sasldb2.
>
> What have I messed up?
>
>

-- 
Igor