[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenLDAP corruption warning?

Quanah Gibson-Mount wrote:
> In:
> <http://www.h5l.org/manual/heimdal-1-1-branch/info/heimdal.html#Using-LDAP-to-store-the-database>
> There's a warning that using OpenLDAP will corrupt the krb5Key binary
> attribute.  However, it doesn't say if that applies to all versions of
> OpenLDAP, or only older ones, etc.  Or if it even applies anymore with
> modern versions.  Does anyone have the details on this?

That section looks pretty old, it only references OpenLDAP 2.1 at the latest, 
and uses the old (incorrect) SASL-EXTERNAL name format. (The current format is 
gidNumber=xx+uidNumber=yy...) It also talks about the hdb.schema being in the 
old LDAPv2 format, and that certainly was changed a long time ago.

> Thanks,
> Quanah
> --
> Quanah Gibson-Mount
> Principal Software Engineer
> Zimbra, Inc
> --------------------
> Zimbra ::  the leader in open source messaging and collaboration

   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/