k pur <[email protected]> writes: > Hi, > I am trying to get Pass-Through authentication to work for password > verification. > > Following the 'Pass-Through authentication' (14.5) in the openldap 2.4 > admin guide, I hve configured saslauthd and slapd.conf (sasl) and > > managed to successfully authenticate with Active Directory (AD) using > the 'testsaslauthd' utility. > > Setting a user password in my openldap database in the form > > dn: uid=user,ou=org,dc=org.com > > userPassword: {sasl}[email protected] > > where [email protected] is the userPrincipalName defined for this > > user in AD. > > I can't authenticate, when using the ldapsearch command > > $ ldapsearch -x -v -D 'uid=joe,ou=people,dc=myorg.com' -W -h ldaphost > > Comes up with error (49) > > I have enabled --enable-spasswd --with-cyrus-sasl when compiling openldap > > Has anybody configured this type of setup successfully? > > My question is - how do I configure my openldap server to talk to
You have to configure a sasl related slapd.conf, depending on you OS this file might be either in /usr/lib/sasl2/slapd.conf or /etc/sasl2/slapd.conf. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:8EF7B6C6 53°37'09,95"N 10°08'02,42"E
