[30386] in Kerberos
RE: Kerberos and LDAP
daemon@ATHENA.MIT.EDU (Xu, Qiang (FXSGSC))
Thu Oct 30 06:38:56 2008
From: "Xu, Qiang (FXSGSC)" <Qiang.Xu@fujixerox.com>
To: Ronni Feldt <rofe@one.com>, "kerberos@mit.edu" <kerberos@mit.edu>
Date: Thu, 30 Oct 2008 18:37:12 +0800
Message-ID: <D8C9BC7FFCF8154FB7141EB8DB609C1722387256BE@SGPAPHQ-EXSCC01.dc01.fujixerox.net>
In-Reply-To: <1225359395.6996.18.camel@localhost>
Content-Language: en-US
MIME-Version: 1.0
X-MAIL-FROM: <qiang.xu@fujixerox.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
> -----Original Message-----
> From: kerberos-bounces@mit.edu
> [mailto:kerberos-bounces@mit.edu] On Behalf Of Ronni Feldt
> Sent: Thursday, October 30, 2008 5:37 PM
> To: kerberos@mit.edu
> Subject: Kerberos and LDAP
>
> Hi,
>
> Im still trying to get this to work.
>
> Server: Debian Etch (3 hostnames=lookout, ldap and kerberos,
> ip=192.168.212.15)
> Workstation: Ubuntu 8.04 (hostname=rofe.one.com, ip=192.168.212.93)
>
> I have followed the following guides:
> http://techpubs.spinlocksolutions.com/dklar/kerberos.html
> http://techpubs.spinlocksolutions.com/dklar/ldap.html
>
> Created my own user "ronni" the same way as the user "mirko" is.
>
> >From my workstation I can do:
> kinit ronni
> ldapsearch -x
> which both work.
When you run ldapsearch with "-x" option, it means the simple binding and does not need a kerberos ticket. So your previous "kinit" command is redundant.
You need to test it without -x option to see whether it still works.
Just my 2 cents,
Xu Qiang
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
