[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heimdal with openldap-backend

On Thu, 2004-02-05 at 13:21, Harry Rüter wrote:
> Hi everybody,
> 
> this is not only an heimdal , but maybe also an openldap problem.
> Hope your not bad, but i don't know whom to ask ...
> 
> My configuration :
> 
> Suse LINUX 8.2
> Kernel 2.4.24
> openldap-2-2-4
> heimdal-0.6
> openssl-0.9.6l
> 
> The problem :
> 
> 
> I try to use openldap-2.2.4 as backend for heimdal, like Luke Howard
> from PADL described it on the PADL-site.
> 
> 
> Now, all KERBEROS/LDAP-deamons are started
> (heimdal log says : Feb  5 20:27:19 Pentium200 kadmind[2227]: bind: 
> /var/heimdal/kdc.conf:0: cannot open file - What's this ?)
> and i come to the point to initialize heimdal .
> 
> First i run kstash - without problems.
> 
> Then i try kadmin, here's what it says :
> 
> ---snipp---
> Pentium200:/usr/local/heimdal-0.6/sbin # ./kadmin -l
> kadmin> init HRNET.DE
> Realm max ticket life [unlimited]:
> Realm max renewable ticket life [unlimited]:
> kadmin: kadm5_create_principal: ldap_add_s: Strong(er) authentication
> required
> Pentium200:/usr/local/heimdal-0.6/sbin #
> ---snipp---
> 
> Too bad, what stronger authentication does it mean and where do i configure it ?
> 
I think the problem is that heimdal 0.6 have not the latest patch to use
the OpenLDAP backend. 
Please try with the latest heimdal snapshot not the 0.6 release.

Also if you want the patch take a look at

http://www.stacken.kth.se/lists/heimdal-discuss/2003-05/msg00040.html

Alberto Patiño