[389-users] MIT Kerberos and FDS integration

John Robert Mendoza jrobertm8 at yahoo.com
Mon Jul 20 08:33:53 UTC 2009 

Actually i use the

#/usr/lib/mozldap/ldapsearch

There is no option for the -Y.

I can bind using GSSAPI by this command

#/usr/lib/mozldap/ldapsearch -o "mech=GSSAPI" -b "my suffix" objectclass=*

and it outputs this error

ldapsearch: started Mon Jul 20 16:33:07 2009

ldap_init( localhost, 389 )
Bind Error: Invalid credentials
Bind Error: additional info: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure.  Minor code may provide more information (Permission denied)

Thanks for your reply.




John Robert Mendoza

--- On Mon, 7/20/09, Andrey Ivanov <andrey.ivanov at polytechnique.fr> wrote:

From: Andrey Ivanov <andrey.ivanov at polytechnique.fr>
Subject: Re: [389-users] MIT Kerberos and FDS integration
To: "General discussion list for the 389 Directory server project." <fedora-directory-users at redhat.com>
Date: Monday, 20 July, 2009, 2:06 PM

Hi,


kinit myusername
ldapsearch -Y GSSAPI -h ldap.example.com -b "<your suffix>" objectClass=*
SASL/GSSAPI authentication started
SASL username: <myusername>@KERBEROS.REALM
SASL SSF: 56
SASL installing layers
# extended LDIF
#
# LDAPv3
# base <your suffix> with scope subtree
# filter:  objectClass=*
# requesting: ALL
#
...



2009/7/20 John Robert Mendoza <jrobertm8 at yahoo.com>:
> Hi to all!
>
> I am currently setting up an integration with the FDS and Kerberos.
>
> I have successfully setup both independently and verified them to be working
> independently.
>
> How do I know that I have successfully binded FDS and kerberos.
> How can i verify it.
>
> I am using Fedora 1.2.0 and Kerberos 1.6.3...
>
>
> John Robert Mendoza
> ________________________________
> What can we do to improve Metro Manila traffic?
> Find the answers on Yahoo! Answers
> --
> 389 users mailing list
> 389-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>

--
389 users mailing list
389-users at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users



      Surf faster. Internet Explorer 8 optmized for Yahoo! auto launches 2 of your favorite pages everytime you open your browser. Get IE8 here! http://downloads.yahoo.com/sg/internetexplorer/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20090720/52aa47b2/attachment.html>

More information about the 389-users mailing list