[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ldap <--> heimdal again

To: heimdal-discuss@sics.se
Subject: ldap <--> heimdal again
From: Ilia Chipitsine <ilia@paramon.ru>
Date: Sun, 13 Mar 2005 14:14:06 +0500 (YEKT)
Sender: owner-heimdal-discuss@sics.se

Dear Sirs,

I again tried to configure heimdal against OpenLDAP.
I'm using FreeBSD-5.2.1 and I have installed heimdal from ports 
collection.

1) how can I specify path to the socket openldap is listening on ?

2) I configured /etc/krb5.conf according to online manual (I attached 
config), but I see strange things in logs. I attached logs as well.
It seems that is's expecting /var/heimdal/kdc.conf, where can I find 
information on configuring that file ?

3) It seems that heimdal cannot find ldap configuration. What did I do 
wrong ?

4) when I tried to initialize database

sol# kadmin -l
kadmin> init CHEL.SKBKONTUR.RU
Realm max ticket life [unlimited]:
Realm max renewable ticket life [unlimited]:
kadmin: kadm5_create_principal: ldap_add_s: Can't contact LDAP server
sol#

it seems there are errors, but how can I make it more verbose ?
I see nothing strange in logs, so I've no idea what did I do wrong.
Somebody, please, enlight me, how can I turn on debugging ?

Cheers,
Ilia Chipitsine

2005-03-13T14:07:09 open ldap:ou=KerberosPrincpals,ou=CHEL,o=SKBKontur,c=RU.log: No such file or directory
2005-03-13T14:07:09 bind(IPv4:192.168.201.1): Address already in use
2005-03-13T14:07:09 bind(IPv4:192.168.201.1): Address already in use
2005-03-13T14:07:09 bind(IPv4:192.168.201.1): Address already in use

2005-03-13T14:07:09 listening on IPv4:192.168.100.1 port 88/udp
2005-03-13T14:07:09 listening on IPv4:212.57.175.94 port 88/udp
2005-03-13T14:07:09 listening on IPv4:127.0.0.1 port 88/udp
2005-03-13T14:07:09 listening on IPv4:192.168.201.1 port 88/udp
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: /var/heimdal/kdc.conf:0: cannot open file
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: Address already in use
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: Address already in use
2005-03-13T14:07:09 listening on IPv4:192.168.100.1 port 88/tcp
2005-03-13T14:07:09 listening on IPv4:212.57.175.94 port 88/tcp
2005-03-13T14:07:09 listening on IPv4:127.0.0.1 port 88/tcp
2005-03-13T14:07:09 listening on IPv4:192.168.201.1 port 88/tcp
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: Address already in use
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: Address already in use
2005-03-13T14:07:09 bind IPv4:192.168.201.1/88: Address already in use

[libdefaults]
         ticket_lifetime = 600
         default_realm = CHEL.SKBKONTUR.RU
         default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc
         default_tgs_enctypes = des3-hmac-sha1 des-cbc-crc

[realms]
         CHEL.SKBKONTUR.RU = {
             kdc = 127.0.0.1
             admin_server = 127.0.0.1
             default_domain = chel.skbkontur.ru
         }

[domain_realm]
         .chel.skbkontur.ru = CHEL.SKBKONTUR.RU
         chel.skbkontur.ru = CHEL.SKBKONTUR.RU

[logging]
         kdc = FILE:/var/log/krb5kdc.log
         admin_server = FILE:/var/log/kadmin.log
         default = FILE:/var/log/krb5lib.log

[kdc]
        database = {
                dbname = ldap:ou=KerberosPrincpals,ou=CHEL,o=SKBKontur,c=RU
                mkey_file = /var/heimdal/m-key
        }

Prev by Date: Extract Keytab permissions
Next by Date: Re: ldap <--> heimdal again
Prev by thread: Re: Extract Keytab permissions
Next by thread: Re: ldap <--> heimdal again
Index(es):
- Date
- Thread