[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems connecting to OpenLDAP-2.2.17 with Kerberos (ldapclient).



On Wed, Nov 03, 2004 at 05:25:02PM -0200, Andreas wrote:
> On Wed, Nov 03, 2004 at 07:21:48PM +0000, Lewis Thompson wrote:
> > On Wed, Nov 03, 2004 at 05:14:27PM -0200, Andreas wrote:
> > > On Wed, Nov 03, 2004 at 07:06:28PM +0000, Lewis Thompson wrote:
> > > > SASL/GSSAPI authentication started
> > > > ldap_sasl_interactive_bind_s: Local error (-2)
> > > >         additional info: SASL(-1): generic failure: GSSAPI Error:
> > > > Miscellaneous failure (see text) (Server (krbtgt/168.0.1@DOMAIN.COM) unknown)
> > >                                                    ^^^^^^^
> > > There seems to be a typo somewhere in your config. Perhaps in /etc/hosts, or your
> > > DNS, or resolver.
> > 
> > That's what I thought.  I've checked everywhere I can think of.  The
> > only kerberos DNS entry I have now is:
> 
> Is the output of the "hostname" command OK? For some reason your gssapi library is
> thinking your hostname is 168.0.1. It should not even be an IP address, but an FQDN.

% hostname
server.domain.com

  I'm really confused how it has got an IP address.  Out of curiosity
why has it cropped the least significant part of the FQDN?  Is that
because it is expecting server.domain.com but wants just domain.com?

-lewiz.

-- 
I was so much older then, I'm younger than that now.  --Bob Dylan, 1964.
------------------------------------------------------------------------
-| msn:lewiz@fajita.org | jabber:lewiz@jabber.org | url:www.lewiz.org |-

Attachment: pgp9FemIgS1uW.pgp
Description: PGP signature