[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: kadmind.acl failed after transferring principals to openldap


I had the same problem. Check that in your kdc.conf database section ALL
ex-default parameters are inserted.
It seems to be a strange behaviour, that if this section is used the
defaults are gone to nowhere..

So set
database = {
  acl_file = /var/heimdal/kadmin.acl
  m_key = bla
  dbname = ldap:bla ...

and check if it is working than.


             jay alvarez                                                   
             o.com>                                                     To 
             Sent by:                  heimdal-discuss@sics.se             
             owner-heimdal-dis                                          cc 
                                       kadmind.acl failed after            
             01/06/2006 05:28          transferring principals to openldap 

Good day,

After dumping the database from an existing bdb kerberos server,
immediately load that database into a newly configured
heimdal/openldap.Everything works fine
but the following:

kadmind.acl doesn't work anymore. I transferred this file into the new
server's /var/heimdal but on the client I get an
kadmin: get *: Operation requires `get' privilege

Is it not possible for heimdal to work with a remote ldapserver??  Why is
it that when the heimdal and openldap is on the same machine... slapd still
has to be started with ldap:/// and not just ldapi:///  ?

That's all for now.. thanks.

Yahoo! Photos
Ring in the New Year with Photo Calendars. Add photos, events, holidays,