[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on LDAP support in heimdal

To: Lars Kellogg-Stedman <lars@oddbit.com>
Subject: Re: Comments on LDAP support in heimdal
From: Howard Chu <hyc@highlandsun.com>
Date: Sun, 30 Oct 2005 16:59:41 -0800
Cc: heimdal-discuss@sics.se
In-Reply-To: <c27faacf0510301556m1ee0fe5ete517a537606499e7@mail.gmail.com>
References: <c27faacf0510301556m1ee0fe5ete517a537606499e7@mail.gmail.com>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a1) Gecko/20051027 SeaMonkey/1.1a

While we're on this subject, it might be a better idea to make to treat 
the dbname as a URI. Then we could make the path to the socket explicit, 
e.g. dbname = ldapi://%2fvar%2fheimdal%2fldap/dc=example,dc=com

Lars Kellogg-Stedman wrote:
> Howdy,
> 
> While setting up Heimdal kerberos with the LDAP backend, I ran into a few
> stumbling blocks.  Everything is working now, but I'm curious what other
> folks think about these issues:
> 
> (1) Problems with LDAP hdb as a dynamic module.
> 
> I originally built heimdal with --enable-hdb-openldap-module.  I was using
> the following database configuration:
> 
>   [kdc]
>     database = {
>       realm = EXAMPLE.COM
>       dbname = ldap:ou=dc=example,dc=com
>       mkey_file = /var/heimdal/m-key
>     }


-- 
   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc
   OpenLDAP Core Team            http://www.openldap.org/project/

Follow-Ups:
- Re: Comments on LDAP support in heimdal
  - From: Ilia Chipitsine <ilia@paramon.ru>

References:
- Comments on LDAP support in heimdal
  - From: Lars Kellogg-Stedman <lars@oddbit.com>

Prev by Date: Comments on LDAP support in heimdal
Next by Date: Re: Comments on LDAP support in heimdal
Prev by thread: Comments on LDAP support in heimdal
Next by thread: Re: Comments on LDAP support in heimdal
Index(es):
- Date
- Thread