[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on LDAP support in heimdal



While we're on this subject, it might be a better idea to make to treat 
the dbname as a URI. Then we could make the path to the socket explicit, 
e.g. dbname = ldapi://%2fvar%2fheimdal%2fldap/dc=example,dc=com

Lars Kellogg-Stedman wrote:
> Howdy,
> 
> While setting up Heimdal kerberos with the LDAP backend, I ran into a few
> stumbling blocks.  Everything is working now, but I'm curious what other
> folks think about these issues:
> 
> (1) Problems with LDAP hdb as a dynamic module.
> 
> I originally built heimdal with --enable-hdb-openldap-module.  I was using
> the following database configuration:
> 
>   [kdc]
>     database = {
>       realm = EXAMPLE.COM
>       dbname = ldap:ou=dc=example,dc=com
>       mkey_file = /var/heimdal/m-key
>     }


-- 
   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc
   OpenLDAP Core Team            http://www.openldap.org/project/