libnss-ldap authenticate with host keytab?: msg#00018 ldap.padl.nss

I'm working on finalizing our setup here, but have this one remaining issue. I
can't seem to get libnss-ldap to bind using the krb5.keytab entry for the
host principal. Am I approaching this from the wrong direction, or am I just
missing a simple switch?

Anonymous bind is disabled (2003 Server AD), and I would *strongly* like to
avoid having a readable dn/password in libnss-ldap.conf and thought that
using the existing host/hosts.fqdn.com principal would be best, either via
Kerberos directly, or more likely SASL.

I'd appreciate any pointers/comments/ideas.

Joel Johnson

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	nss-ldap: * glibc detected * free(): invalid next size (normal):: 00018, Steffen Kolbe
Next by Date:	Static Mappings: 00018, profplump (sent by Nabble.com)
Previous by Thread:	nss-ldap: * glibc detected * free(): invalid next size (normal):i: 00018, Steffen Kolbe
Next by Thread:	Re: libnss-ldap authenticate with host keytab?: 00018, Joel Johnson
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

nss-ldap: *** glibc detected *** free(): invalid next size (normal):: 00018, Steffen Kolbe

Next by Date:

Static Mappings: 00018, profplump (sent by Nabble.com)

Previous by Thread:

nss-ldap: *** glibc detected *** free(): invalid next size (normal):i: 00018, Steffen Kolbe

Next by Thread:

Re: libnss-ldap authenticate with host keytab?: 00018, Joel Johnson

Indexes:

[Date] [Thread] [Top] [All Lists]