Redhat Package to get kldap module working?
Mathew Rowley
mathew_rowley at cable.comcast.com
Thu Dec 11 16:29:33 EST 2008
In case someone else runs into this problem, it seems that by default the
redhat Kerberos RPM is not installed with LDAP support, there are flags at
the top of the spec file to change this:
# Define WITH_LDAP to get the krb5-server-ldap subpackage, and define both
# WITH_LDAP and ONLY_LDAP to make it the only subpackage.
%define WITH_LDAP 1
%define ONLY_LDAP 0
%define WITH_DIRSRV 0
MAT
On 12/11/08 1:25 PM, "Mathew Rowley" <mathew_rowley at cable.comcast.com>
wrote:
> Has anyone used the kldap db module on redhat? I have OpenLDAP and Kerberos
> installed via redhat packages, but when attempting to start krb5kdc, I get
> the following error:
>
> krb5kdc: Unable to find requested database type - while initializing
> database for realm BLAH.COM
>
> It sounds like the module is not loading properly, or not installed. Any
> ideas?
>
> Here is my krb5.conf additions:
> [dbdefaults]
> ldap_kerberos_container_dn = cn=krbcontainer,o=com
> [dbmodules]
> openldap_ldapconf = {
> db_library = kldap
> ldap_kerberos_container_dn = cn=krbcontainer,o=com
> ldap_kdc_dn = "cn=krbadmin,o=com"
> ldap_kadmind_dn = "cn=krbadmin,o=com"
> ldap_service_password_file = /etc/kerberos/service.keyfile
> ldap_servers = ldap://ipa01.security.lab.comcast.com
> ldap_conns_per_server = 5
> }
>
> --
> MAT
>
> ________________________________________________
> Kerberos mailing list Kerberos at mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
More information about the Kerberos
mailing list