[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Error with SASL



> -----Original Message-----
> From: Jose Hidalgo Herrera [mailto:jose@hostarica.com]

> I have this settings:
>
> cyrus-sasl-2.1.17_1
> openldap-server-2.1.23(make -DWITH_SASL install)
> openldap-client-2.1.23(make -DWITH_SASL install)
>
> ~# ldd `which ldapsearch`
> /usr/local/bin/ldapsearch:
>         libsasl2.so.2 => /usr/local/lib/libsasl2.so.2 (0x28092000)
>         libssl.so.3 => /usr/lib/libssl.so.3 (0x280a5000)
>         libcrypto.so.3 => /usr/lib/libcrypto.so.3 (0x280d4000)
>         libfetch.so.3 => /usr/lib/libfetch.so.3 (0x281cb000)
>         libcom_err.so.2 => /usr/lib/libcom_err.so.2 (0x281d7000)
>         libc.so.4 => /usr/lib/libc.so.4 (0x281d9000)
>
> ~# ps agx | grep slapd
> 50744  ??  Ss     0:00.18 /usr/local/libexec/slapd -h
> ldap:/// ldaps:///
> -u ldap -g ldap
>
> ------------------------------------------------
> ~# ldapsearch -ZZ -Y PRESENT -w secret -h openldap.example.net -D
> "cn=Manager,dc=example,dc=net" -b 'dc=example,dc=net'
> ldap_sasl_interactive_bind_s: Unknown authentication method (86)
>         additional info: SASL(-4): no mechanism available: No worthy
> mechs found
>
> ------------------------------------------------

"PRESENT" is not the name of any SASL mechanism I'm aware of.

> ~# ldapsearch -x -ZZ -s base -b "" -LLL
> dn:
> objectClass: top
> objectClass: OpenLDAProotDSE
>
>
> --------------------------------------------------
>
> I should have mechs right ?

Search for "supportedSASLmechanisms":
	ldapsearch -x -ZZ -s base -b "" -LLL supportedSASLmechanisms

The rootDSE contains mostly operational attributes; you must request them
explicitly to see their values (or use the "+" wildcard).

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support