Invalid login
Asmaa Ahmed
asabatgirl at hotmail.com
Tue Feb 19 22:05:24 EST 2013
Hello,
I am trying to enable SASL/kerb authentication to access LDAP to avoid providing the password in plain textWhich is OK so far as I was able to do sync, and the users retrieved successfully, but some how something wrong while trying to authenticate by uid.
Here are my debug logs:Feb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=1 SRCH base="ou=People,dc=domain,dc=com" scope=2 deref=0 filter="(&(objectClass=*)(uid=aahmed))"Feb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=1 SRCH attr=uid cn mail modifyTimestampFeb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=Feb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=2 BIND dn="uid=aahmed,ou=people,dc=domain,dc=com" method=128Feb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=2 RESULT tag=97 err=49 text=Feb 20 12:21:48 auth-dev slapd[6315]: conn=1024 op=3 UNBIND
Any one can see what is missing here?I followed the instructions that mentions there http://thomas.dereyck.eu/wiki/Setting%20up%20an%20LDAP%20server#Enabling_pass-through_authentication_to_Kerberos
Thanks.
More information about the Kerberos
mailing list