"Server unknown" error
Howard Chu
hyc at highlandsun.com
Wed Feb 15 15:07:52 EST 2006
Gilles wrote:
> Hello.
>
> I'm experimenting with Kerberos and LDAP, and I'm now
> quite confused with the following error:
>
> $ ldapwhoami -H ldap://db -Y GSSAPI
> SASL/GSSAPI authentication started
> ldap_sasl_interactive_bind_s: Local error (-2)
> additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Server (ldap/db.harfang.homelinux.org at HARFANG.HOMELINUX.ORG) unknown)
>
> The fact is that I had created a "ldap/db.harfang.homelinux.org"
> principal. And the above command had been working.
> Subsequently, I removed that principal and created another one
> named "db/db.harfang.homelinux.org".
The "ldap" principal name is hardcoded for LDAP clients using GSSAPI, so
deleting that principal is a mistake.
--
-- Howard Chu
Chief Architect, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc
OpenLDAP Core Team http://www.openldap.org/project/
More information about the Cyrus-sasl
mailing list