Hmm, Do your cn=config databases match?
Do you know what that hashed password actually is? Can you manually bind with that username/pw and ldapsearch? Matt Pallissard On Thu, 2017-04-13 at 14:02 +0200, Jaap Winius wrote: > Quoting "Pallissard, Matthew" <[email protected]>: > > > What does your olcSyncrepl line for dc=example,dc=com look like? > > olcSyncrepl: {0}rid=123 provider="ldap://klsm.example.com:389/"; > type=refreshAn > dPersist retry="60 30 300 +" searchbase="dc=example,dc=com" > bindmethod=sasl s > aslmech=gssapi > > The OpenLDAP configuration works, as far as I can tell, since I was > able to pull in a copy of the DIT, which includes the Kerberos > database. > > Cheers, > > Jaap > ________________________________________________ > Kerberos mailing list [email protected] > https://mailman.mit.edu/mailman/listinfo/kerberos ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
