Problem with ptloader and SASL authenticated LDAP
Igor Brezac
igor at ipass.net
Tue Jul 11 10:32:16 EDT 2006
On Wed, 5 Jul 2006, Ben Poliakoff wrote:
> Hi All,
>
> I've been trying to use the LDAP pts module with Cyrus imapd 2.3.6.
> I've had reasonably good success with ptloader configured to do
> *anonymous* binds, but when I set 'ldap_sasl: 1' in imapd.conf ptloader
> fails to bind to my LDAP server with the following error:
>
> Unable to set LDAP_OPT_X_SASL_SECPROPS.
What version of openldap do you use?
-Igor
>
> The master process is running with GSSAPI credentials (I'm able to
> bind to the LDAP server with these credentials using the 'ldapsearch'
> command, even when I manually specify SASL secprops with ldapsearch's
> -O option). By default it appears that cyrus sets the 'noplain' SASL
> secprop. Looking throught archives I haven't seen mention of the above
> error. My ldap_* configs look like this:
>
> ldap_filter: (uid=%U)
> ldap_realm: example.com
> ldap_start_tls: 1
> ldap_tls_cacert_dir: /etc/ssl/certs
> ldap_mech: gssapi
> ldap_base: ou=people,dc=example,dc=com
> ldap_group_base: ou=group,dc=example,dc=com
> ldap_sasl: 1
> ldap_uri: ldap://ldap.example.com
>
> Am I missing something big?
>
> Ben
> ----
> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>
--
Igor
More information about the Info-cyrus
mailing list