Hi,
I have following problem with configuring openldap to use SASL
authentication (GSSAPI mechanism):
shade:/home/prema# ldappasswd -h shade -Y GSSAPI -D
uid=curley,cn=MOJEDOMENA,cn=gssapi,cn=auth SASL/GSSAPI authentication
started
SASL username: curley@MOJEDOMENA
SASL SSF: 56
SASL installing layers
New password: fSW3gdZg
Result: Internal (implementation specific) error (80)
Additional info: SASL(-7): invalid parameter supplied: Error putting OTP
secret
I have everything installed on one single system (shade) for testing
purpose: MIT Kerberos 5 release 1.4.2, cyrus-sasl 2.1.21, openldap 2.3.11.
It is question for me, why there are errors wit OTP. Isn't it true that
OTP is one-time password mechanism for SASL ? But i' am using GSSAPI
(explicitly saying -Y GSSAPI) so why OTP do something.