bind to LDAP server produces "invalid credentials" error
Travis Bean
tbean74 at gmail.com
Sat Aug 23 21:10:11 EDT 2025
On Fri, Aug 22, 2025 at 9:50 AM Travis Bean <tbean74 at gmail.com> wrote:
>
> On Thu, Aug 21, 2025 at 10:56 AM Greg Hudson <ghudson at mit.edu> wrote:
> >
> > On 8/20/25 23:43, Travis Bean wrote:
> > > “Cannot bind to LDAP server ldapi:/// as
> > > ‘cn=kdc-srv,cn=krbContainer,dc=example,dc=local’: Invalid credentials
> > > - while initializing database.”
> >
> > This means libkdb_ldap called ldap_sasl_bind_s() and got back an
> > LDAP_INVALID_CREDENTIALS response, most likely indicating that the LDAP
> > server didn't match the password from the service stash file.
After extensive troubleshooting, I can definitely say this is a
problem with my stash file.
Perhaps there is a bug in kdb5_ldap_util since it is generating a
malformed stash file.
Perhaps I should submit a bug report.
Kind regards,
Travis Bean
More information about the Kerberos
mailing list