[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP + SASL



> debian:/usr/lib/sasl2# ldapsearch -h localhost -p 389 -Y -s base -LLL

-Y requires the mech you selected as an argument; see ldapsearch(1)
(and any other client's manpage, they work exactly the same)

> supportedSASLMechanisms -d 1
> ldap_create
> ldap_interactive_sasl_bind_s: user selected: -s

This is a consequence of the above; read the logs...

> ldap_int_sasl_bind: -s
> ldap_new_connection
> ldap_int_open_connection
> ldap_connect_to_host: TCP localhost:389
> ldap_new_socket: 3
> ldap_prepare_socket: 3
> ldap_connect_to_host: Trying 127.0.0.1:389
> ldap_connect_timeout: fd: 3 tm: -1 async: 0
> ldap_ndelay_on: 3
> ldap_is_sock_ready: 3
> ldap_ndelay_off: 3
> ldap_int_sasl_open: host=debian
> ldap_perror
> ldap_sasl_interactive_bind_s: Unknown authentication method (86)
>         additional info: SASL(-4): no mechanism available: No worthy
> mechs found

The above makes this answer pretty clear.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it




    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497