Here's the problem I'm seeing.
I used to tell my Kerberos library to use the default location to store my TGT (which was /tmp/krb5cc_0). But now that I tell the Kerberos library to store it in another location, the bind doesn't work.
I get the following: GSSAPI Error: Miscellaneous failure (see text) (open(/tmp/krb5cc_0): No such file or directory)
So I'm not sure if I need to tell openldap something different? Or if I need to set an environmental variable to something different? Or... ?
Any ideas?
Thanks, - Jeremiah
At 08:51 AM 9/22/2006, Jeremiah Martell wrote: >Hmmm. So when I do a LDAP+SASL+GSSAPI(Kerberos) bind, openldap just >talks to the Kerberos library to do all things kerberos?
OpenLDAP talks to the Cyrus SASL library, which talks with a GSSAPI library, which talks with a Kerberos library...
Kerberos credential management is left to the Kerberos library.
>What about using the Kerberos service ticket to bind to the server?
Likewise.
Kurt