[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: DNS discovery for OpenLDAP?



Russ Allbery wrote:
Jaap Winius<jwinius@umrk.nl>  writes:

In the course of my research into a solution involving Kerberos,
OpenLDAP and OpenAFS (a.k.a. the Magic Trio), I've discovered that both
Kerberos and OpenAFS support methods of DNS discovery, but that OpenLDAP
apparently does not. Is this correct?

OpenLDAP's command-line tools support service discovery using DNS SRV
records.  See, for instance, the ldapsearch man page:

        -H ldapuri
               Specify URI(s) referring to the ldap server(s); a list of
               URI, separated by whitespace or commas is expected; only the
               protocol/host/port fields are allowed.  As an exception, if
               no host/port is specified, but a DN is, the DN is used to
               look up the corresponding host(s) using the DNS SRV records,
               according to RFC 2782.

I'm not sure if this is also available directly in the library or if the
client has to implement it.

This feature is implemented in the OpenLDAP client code, not in libldap.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/