[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenLDAP / SASL / Heimdal

To: Andreas Haupt <andreas.haupt@hmi.de>
Subject: Re: OpenLDAP / SASL / Heimdal
From: sam <samwun@hgcbroadband.com>
Date: Mon, 07 Jun 2004 19:02:23 +0800
Cc: heimdal-discuss@sics.se
In-Reply-To: <200406071242.01432.andreas.haupt@hmi.de>
References: <200406071242.01432.andreas.haupt@hmi.de>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7b) Gecko/20040316

Andreas Haupt wrote:

>Hello,
>
>I'm trying to setup OpenLDAP with SASL2 and Heimdal. When trying to 
>authenticate I get the following error in the log files:
>
>2004-06-07T11:43:01 TGS-REQ blh@HMI.DE from IPv4:134.30.5.92 for ldap/
>dice.hmi.de@HMI.DE
>2004-06-07T11:43:01 TGS-REQ blh@HMI.DE from IPv4:134.30.5.92 for ldap/
>dice.hmi.de@HMI.DE
>2004-06-07T11:43:01 Decoding transited encoding: KDC policy rejects 
>request
>2004-06-07T11:43:01 Decoding transited encoding: KDC policy rejects 
>request
>2004-06-07T11:43:01 sending 115 bytes to IPv4:134.30.5.92
>2004-06-07T11:43:01 sending 115 bytes to IPv4:134.30.5.92
>
>I don't have a clue what this means and how I can avoid the problem... 
>Heimdal server is version 0.6 (SuSE 9.0).
>
>Greetings
>Andreas
>  
>

As root, execute command "ktutil list" to see whether you have 
ldap/dice.hmi.de@HMI.DE.
and add user blh use kadmin. Then su - blh, and kinit, then try again.

sam

Follow-Ups:
- Re: OpenLDAP / SASL / Heimdal
  - From: Andreas Haupt <andreas.haupt@hmi.de>

References:
- OpenLDAP / SASL / Heimdal
  - From: Andreas Haupt <andreas.haupt@hmi.de>

Prev by Date: windows client supports one time password ?
Next by Date: Re: OpenLDAP / SASL / Heimdal
Prev by thread: OpenLDAP / SASL / Heimdal
Next by thread: Re: OpenLDAP / SASL / Heimdal
Index(es):
- Date
- Thread