[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL(-4): no mechanism available:

Hello,

 I was struggling several days with a test machine to check
a new update of the directory and kerberos (heimdal) software,
unfortunately the previous configuration doesn't works and I
am unable to find the root of the problem. 

 All configurations are very simples (to discard complex problems), 
however I must be forgetting something because when kadmin contacts 
the openldap server via the ldapi socket it gets the response 
"SASL(-4): no mechanism available". 

It might be a misconfiguration of SASL or OpenLDAP but I don't 
see it.

 anyone knows what can be the cause of that?

Thanks you.


include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/corba.schema
include         /etc/openldap/schema/misc.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/openldap.schema
include         /etc/openldap/schema/samba3.schema
include         /etc/openldap/schema/sendmail.schema
include         /etc/openldap/schema/fadesa.schema
include         /etc/openldap/schema/krb5-kdc.schema
pidfile         /var/run/slapd/slapd.pid
argsfile        /var/run/slapd/slapd.args
schemacheck on
password-hash {CLEARTEXT}
loglevel -1
modulepath      /usr/lib/openldap/modules
security ssf=0
access to * by * write
sasl_realm  FADESA.ES
sasl-secprops none
sasl-secprops minssf=0
sasl-regexp
     uid=(.+),cn=FADESA.ES,cn=gssapi,cn=auth
     uid=$1,ou=personas,ou=cuentas,dc=fadesa,dc=es
sasl-regexp "uidNumber=0\\\+gidNumber=.*,cn=peercred,cn=external,cn=auth"
         "krb5PrincipalName=kadmin/admin@FADESA.ES,ou=personas,ou=cuentas,dc=fadesa,dc=es"
database        bdb
suffix          "dc=fadesa,dc=es"
rootdn          "cn=admintest,dc=fadesa,dc=es"
rootpw          test
directory       /var/lib/ldap
cachesize       10000
checkpoint      512     720



Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on 1 descriptors
Jun  6 18:03:54 atlas slapd[15778]: daemon: new connection on 13
Jun  6 18:03:54 atlas slapd[15778]: conn=1 fd=13 ACCEPT from PATH=/var/run/slapd/ldapi (PATH=/var/run/slapd/ldapi)
Jun  6 18:03:54 atlas slapd[15778]: daemon: added 13r
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on:
Jun  6 18:03:54 atlas slapd[15778]:
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=6 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=7 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=8 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=9 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=10 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on 1 descriptors
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on:
Jun  6 18:03:54 atlas slapd[15778]:  13r
Jun  6 18:03:54 atlas slapd[15778]:
Jun  6 18:03:54 atlas slapd[15778]: daemon: read activity on 13
Jun  6 18:03:54 atlas slapd[15778]: connection_get(13)
Jun  6 18:03:54 atlas slapd[15778]: connection_get(13): got connid=1
Jun  6 18:03:54 atlas slapd[15778]: connection_read(13): checking for input on id=1
Jun  6 18:03:54 atlas slapd[15778]: ber_get_next on fd 13 failed errno=11 (Resource temporarily unavailable)
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=6 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=7 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=8 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=9 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=10 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: do_bind
Jun  6 18:03:54 atlas slapd[15778]: >>> dnPrettyNormal: <>
Jun  6 18:03:54 atlas slapd[15778]: <<< dnPrettyNormal: <>, <>
Jun  6 18:03:54 atlas slapd[15778]: do_sasl_bind: dn () mech EXTERNAL
Jun  6 18:03:54 atlas slapd[15778]: conn=1 op=0 BIND dn="" method=163
Jun  6 18:03:54 atlas slapd[15778]: ==> sasl_bind: dn="" mech=EXTERNAL datalen=0
Jun  6 18:03:54 atlas slapd[15778]: send_ldap_result: conn=1 op=0 p=3
Jun  6 18:03:54 atlas slapd[15778]: send_ldap_result: err=7 matched="" text="SASL(-4): no mechanism available: "
Jun  6 18:03:54 atlas slapd[15778]: send_ldap_response: msgid=1 tag=97 err=7
Jun  6 18:03:54 atlas slapd[15778]: conn=1 op=0 RESULT tag=97 err=7 text=SASL(-4): no mechanism available:
Jun  6 18:03:54 atlas slapd[15778]: <== slap_sasl_bind: rc=7
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on 1 descriptors
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on:
Jun  6 18:03:54 atlas slapd[15778]:  13r
Jun  6 18:03:54 atlas slapd[15778]:
Jun  6 18:03:54 atlas slapd[15778]: daemon: read activity on 13
Jun  6 18:03:54 atlas slapd[15778]: connection_get(13)
Jun  6 18:03:54 atlas slapd[15778]: connection_get(13): got connid=1
Jun  6 18:03:54 atlas slapd[15778]: connection_read(13): checking for input on id=1
Jun  6 18:03:54 atlas slapd[15778]: ber_get_next on fd 13 failed errno=0 (Success)
Jun  6 18:03:54 atlas slapd[15778]: connection_read(13): input error=-2 id=1, closing.
Jun  6 18:03:54 atlas slapd[15778]: connection_closing: readying conn=1 sd=13 for close
Jun  6 18:03:54 atlas slapd[15778]: connection_close: deferring conn=1 sd=13
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=6 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=7 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=8 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=9 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=10 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: activity on 1 descriptors
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=6 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=7 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=8 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=9 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: daemon: select: listen=10 active_threads=0 tvp=NULL
Jun  6 18:03:54 atlas slapd[15778]: do_unbind
Jun  6 18:03:54 atlas slapd[15778]: conn=1 op=1 UNBIND
Jun  6 18:03:54 atlas slapd[15778]: connection_resched: attempting closing conn=1 sd=13
Jun  6 18:03:54 atlas slapd[15778]: connection_close: conn=1 sd=13
Jun  6 18:03:54 atlas slapd[15778]: daemon: removing 13
Jun  6 18:03:54 atlas slapd[15778]: conn=1 fd=13 closed

-- 
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GCS/IT d- s+:+() a31 C+++ UBL+++$ P+ L+++ E--- W++ N+ o++ K- w---
O+ M+ V- PS+ PE+ Y++ PGP+>+++ t+ 5 X+$ R- tv-- b+++ DI D++>+++
G++ e- h+(++) !r !z
------END GEEK CODE BLOCK------