[37940] in Kerberos
Re: KDC 1.15 startup error: Invalid credentials - while
daemon@ATHENA.MIT.EDU (Pallissard, Matthew)
Thu Apr 13 08:14:04 2017
Message-ID: <1492085620.1939.9.camel@pallissard.net>
From: "Pallissard, Matthew" <krb@pallissard.net>
To: kerberos@mit.edu
Date: Thu, 13 Apr 2017 07:13:40 -0500
In-Reply-To: <20170413140242.16675xxh4a52szj6@bitis.umrk.nl>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit
Hmm,
Do your cn=config databases match?
Do you know what that hashed password actually is? Can you manually bind with that username/pw and ldapsearch?
Matt Pallissard
On Thu, 2017-04-13 at 14:02 +0200, Jaap Winius wrote:
> Quoting "Pallissard, Matthew" <krb@pallissard.net>:
>
> > What does your olcSyncrepl line for dc=example,dc=com look like?
>
> olcSyncrepl: {0}rid=123 provider="ldap://klsm.example.com:389/"
> type=refreshAn
> dPersist retry="60 30 300 +" searchbase="dc=example,dc=com"
> bindmethod=sasl s
> aslmech=gssapi
>
> The OpenLDAP configuration works, as far as I can tell, since I was
> able to pull in a copy of the DIT, which includes the Kerberos
> database.
>
> Cheers,
>
> Jaap
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
