[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP authenticate the username/password with MS-AD?



On 20/07/10 19:45 +0600, OSHIM wrote:
ldapsearch -LLL -x -H ldap://localhost -s "base" -b "" supportedSASLMechanisms
dn:
supportedSASLMechanisms: ANONYMOUS
supportedSASLMechanisms: LOGIN
supportedSASLMechanisms: NTLM
supportedSASLMechanisms: PLAIN
supportedSASLMechanisms: DIGEST-MD5
supportedSASLMechanisms: CRAM-MD5

also i have this line "sasl-secprops none" in to my /etc/ldap/slapd.conf

With the same error or a different one?

If you're getting the same error, make sure that you have the SASL PLAIN
mechanism installed on your client system. Use pluginviewer/saslpluginvewer
to get a list. If you don't, you may need to install additional binary
packages provided by your OS vendor.

Using ldapwhomi is probably better at this point, and will help you work
out your authz-regexp statements.

On Jul 20, 2010, at 7:31 PM, Dan White wrote:

On 20/07/10 12:44 +0600, OSHIM wrote:
ldapsearch  -Y PLAIN -U swimonowar -W -b dc=myproject,dc=net -v -d 1
ldap_initialize( <DEFAULT> )
ldap_create
Enter LDAP Password: ldap_sasl_interactive_bind_s: user selected: PLAIN
ldap_int_sasl_bind: PLAIN
ldap_new_connection 1 1 0
ldap_int_open_connection
ldap_connect_to_host: TCP localhost:389
ldap_new_socket: 3
ldap_prepare_socket: 3
ldap_connect_to_host: Trying 127.0.0.1:389
ldap_pvt_connect: fd: 3 tm: -1 async: 0
ldap_int_sasl_open: host=myproject.net
ldap_err2string
ldap_sasl_interactive_bind_s: Unknown authentication method (-6)

--
Dan White