[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: openldap support

To: Brian May <bam@snoopy.apana.org.au>
Subject: Re: openldap support
From: "Jacques A. Vidrine" <n@nectar.com>
Date: Tue, 30 Jan 2001 08:13:05 -0600
Cc: heimdal-discuss@sics.se
In-Reply-To: <84elxlmw0e.fsf@snoopy.apana.org.au>; from bam@snoopy.apana.org.au on Tue, Jan 30, 2001 at 04:47:29PM +1100
Mail-Followup-To: "Jacques A. Vidrine" <n@nectar.com>,Brian May <bam@snoopy.apana.org.au>, heimdal-discuss@sics.se
References: <84elxlmw0e.fsf@snoopy.apana.org.au>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mutt/1.2.5i

On Tue, Jan 30, 2001 at 04:47:29PM +1100, Brian May wrote:
> Hello,
> 
> I got a bug report recently for my Heimdal package because
> it unexpectedly tried to link into the openldap libraries.
> 
> I was wondering what this LDAP support does, and if I should
> enable or disable it in the Debian version.
> 
> Comments?

It allows you to store the KDC database in LDAP rather than
Berkeley db files. 

In the FreeBSD ports system, we build it conditionally based on
a WITH_LDAP make variable.  Also, there is a small patch to make
it actually work, included below.


--- lib/hdb/hdb-ldap.c.orig	Wed Nov  8 14:42:11 2000
+++ lib/hdb/hdb-ldap.c	Wed Nov  8 15:39:50 2000
@@ -583,8 +583,8 @@
     rc = 1;
     (void) ldap_set_option((LDAP *) db->db, LDAP_OPT_SIZELIMIT, (void *) &rc);
 
-    rc = ldap_search_s((LDAP *) db->db, db->name,
-		       LDAP_SCOPE_ONELEVEL, filter, NULL, 0, msg);
+    rc = ldap_search_s((LDAP *) db->db, db->name, LDAP_SCOPE_ONELEVEL, filter,
+	krb5kdcentry_attrs, 0, msg);
     if (rc != LDAP_SUCCESS) {
 	ret = HDB_ERR_NOENTRY;
 	goto out;

-- 
Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org

References:
- openldap support
  - From: Brian May <bam@snoopy.apana.org.au>

Prev by Date: openldap support
Prev by thread: openldap support
Index(es):
- Date
- Thread