[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heimdal 1.1 & smbk5pwd

Thanks for responding, I feeling a lot less dumb now!

I was actually thinking of switching too, seeing the new 8.04 LTS come out this week. Were there any tricky steps you encountered with compiling on Ubuntu? Or were things fairly straightforward?

--Bill

On Wed, Apr 30, 2008 at 2:12 AM, Scott Grizzard <scott@scottgrizzard.com> wrote:
I spent a week of my life on this, and then switched to ubuntu server.  NOTHING in centos works with heimdal.

You have to recompile all of the openldap rpms, and no matter what I did, it still wanted to use the mit kerberos libraries.

If you are really masochistic, you might want to yum remove the mit kerberos libraries from the system, but it will want to uninstall everything, so force it in a virtual machine somewhere else.  If it compiles, you can use it.

On other linux distros, the dev libraries for mit and heimdal conflict, and with good reason.

For a brief history of my struggles with this, see http://www.linux-archive.org/centos-development/69662-trying-recompile-openldap-overlay-smbk5pwd-ddo_krb5-option.html

- Scott

On Apr 29, 2008, at 9:18 AM, Bill Baird wrote:

I realize this may be off topic, but I have successfully used the smk5pwd overlay with openldap & samba. Adding heimdal to the mix is giving me segfaults.

I have a working Heimdal KDC that stores everything in LDAP. I am using CentOS 5 with the openldap rpms. I downloaded the source RPM and attemping to use the smbk5pwd distributed with that package. I compiled heimdal 1.1 with the following options:

./configure --prefix=/usr/heimdal --with-openldap=/usr/bin --with-openldap-lib=/usr/lib --with-openldap-include=/usr/include --sysconfdir=/etc/heimdal

I am able to compile smbk5pwd fine and install it: (smbk5pwd Makefile)

LIBTOOL=libtool
OPT=-g -O2
CC=gcc

DEFS=-DDO_SAMBA -DDO_KRB5

HEIMDAL_INC=-I/usr/heimdal/include
SSL_INC=
LDAP_INC=-I../../../include -I../../../servers/slapd
INCS=$(LDAP_INC) $(HEIMDAL_INC) $(SSL_INC)

HEIMDAL_LIB=-L/usr/heimdal/lib -lkrb5 -lkadm5srv
SSL_LIB=-lcrypto
LDAP_LIB=-lldap_r -llber
LIBS=$(LDAP_LIB) $(HEIMDAL_LIB) $(SSL_LIB)

I install the overlay to the appropriate directories (using the same exact location/parameters when using it minus k5). When I start openldap I get a segfault everytime.

.....
config_build_entry: "olcOverlay={0}smbk5pwd"
backend_startup_one: starting "dc=phoenixmi,dc=com"
bdb_db_open: unclean shutdown detected; attempting recovery.
bdb_db_open: dbenv_open(/var/lib/ldap)
/bin/bash: line 1: 12447 Segmentation fault      /tmp/start-slapd.d12442

Is there something major I am missing? Or is there a guide our there some decent documentation out there for getting this working? Any help would be greatly appeciated! Thanks!

--Bill