[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL auth not working

To: Dan White <dwhite@olp.net>
Subject: Re: SASL auth not working
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 01 Jul 2010 00:18:17 +0200
Cc: openldap-technical@openldap.org, Diego Lima <lists@diegolima.org>
In-reply-to: <20100630190225.GB2548@dan.olp.net>
References: <AANLkTimdGLX92Wm7T930aeikW1LdzHITlIUxrgKRqMjz@mail.gmail.com> <20100624135006.GD2429@dan.olp.net> <4C2B7424.1000602@stroeder.com> <20100630190225.GB2548@dan.olp.net>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.10) Gecko/20100504 Lightning/1.0b1 SeaMonkey/2.0.5

Dan White wrote:
> On 30/06/10 18:43 +0200, Michael Ströder wrote:
>> He would also have to specify -Y GSSAPI.
>> And off course slapd has to be kerberized first to make this work.
> 
> Presumably he is doing plaintext authentication to slapd rather than
> gssapi, and having saslauthd validate the username and password against
> a kerberos5 server.

Why do you think so? Diego mentioned kinit and klist in the original posting:

http://www.openldap.org/lists/openldap-technical/201006/msg00301.html

Therefore I presume he wants to use SASL/GSSAPI. But only he can tell us what
he really wants to achieve.

Ciao, Michael.

Follow-Ups:
- Re: SASL auth not working
  - From: Dan White <dwhite@olp.net>

References:
- SASL auth not working
  - From: Diego Lima <lists@diegolima.org>
- Re: SASL auth not working
  - From: Dan White <dwhite@olp.net>
- Re: SASL auth not working
  - From: Michael Ströder <michael@stroeder.com>
- Re: SASL auth not working
  - From: Dan White <dwhite@olp.net>

Prev by Date: Re: SASL auth not working
Next by Date: Re: SASL auth not working
Index(es):
- Chronological
- Thread