> As Sergio Gelato noted[1], sasl_realm, sasl_authcid, sasl_authzid are > derived from the credential cache), I will try them to see their > effects
sasl_realm has no effect on kerberos authentication.
sasl_authcid and sasl_authzid have one, both give the following result:
--8<---------------cut here---------------start------------->8---
nslcd: [8b4567] DEBUG: ldap_sasl_interactive_bind_s("(null)","GSSAPI")
nslcd: [8b4567] failed to bind to LDAP server ldap://192.168.122.4:
Insufficient access
--8<---------------cut here---------------end--------------->8---
I do not understand the difference between both options, according to
slapd documentation[1], authcid is an identity and authzid is a
credential.
Regards.
Footnotes:
[1] replica section at http://www.openldap.org/doc/admin22/slapdconfig.html
--
Daniel Dehennin
Récupérer ma clef GPG:
gpg --keyserver pgp.mit.edu --recv-keys 0x6A2540D1
pgpvJNkOu5k3s.pgp
Description: PGP signature
