Frederic Hornain wrote: > Dear Rich, > > Unfortunatly, it does not work. > Could I ask you to do a test on your default RHDS to see if that works ? I know that DIGEST-MD5 does work. > If it works then could you provide me the corresponding openldapsearch > command ? Can you provide excerpts from your access log showing the failed bind attempt? > Thanks for your help. > > BR > Frederic ;) > > On Tue, Oct 26, 2010 at 5:21 PM, Rich Megginson <rmeggins@xxxxxxxxxx > <mailto:rmeggins@xxxxxxxxxx>> wrote: > > Frederic Hornain wrote: > > Dear Rich, > > > > It is in clear text mode. > > > > BR > > Fred ;) > > > > On Tue, Oct 26, 2010 at 5:07 PM, Rich Megginson > <rmeggins@xxxxxxxxxx <mailto:rmeggins@xxxxxxxxxx> > > <mailto:rmeggins@xxxxxxxxxx <mailto:rmeggins@xxxxxxxxxx>>> wrote: > > > > Frederic Hornain wrote: > > > Dear *, > > > > > > How can I configure the Directory server in order to use SASL > > > DIGEST-MD5 with ldapsearch qnd without error messages? > > > http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/SASL.html#Introduction_to_SASL-Authentication_Mechanisms > > > > SASL/DIGEST-MD5 requires that the userPassword is in clear text. > > > > > > ldapsearch -W -h xxx.xxx.xxx.xxx -U username -b > > "dc=example,dc=com" -Y > > > > The username must be in the form of "uid:username" or > "dn:uid=username,ou=people,...suffix..." > Also try -X instead of -U > > > > > DIGEST-MD5 > > > Enter LDAP Password : xxxxx > > > SASL/DIGEST-MD5 authentication started > > > ldap_sasl_interactive_bind_s: Invalid credentials (49) > > > additional info: SASL(-14): authorization failure: unable > canonify > > > user and get auxprops > > > > > > > > > Thanks in advance for your help and your time. > > > > > > BR > > > Frederic ;) > > > > > > ----------------------------------------------------- > > > Fedora-ambassadors-list mailing list > > > Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx> > > <mailto:Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx>> > > > <mailto:Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx> > > <mailto:Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx>>> > > > > > > ------------------------------------------------------------------------ > > > > > > -- > > > 389 users mailing list > > > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx> > > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx>> > > > https://admin.fedoraproject.org/mailman/listinfo/389-users > > > > -- > > 389 users mailing list > > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx> > > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx>> > > https://admin.fedoraproject.org/mailman/listinfo/389-users > > > > > > > > > > -- > > ----------------------------------------------------- > > Fedora-ambassadors-list mailing list > > Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx> > > <mailto:Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx>> > > Olpc mailing list > > olpc-open@xxxxxxxxxx <mailto:olpc-open@xxxxxxxxxx> > <mailto:olpc-open@xxxxxxxxxx <mailto:olpc-open@xxxxxxxxxx>> > > > ------------------------------------------------------------------------ > > > > -- > > 389 users mailing list > > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx> > > https://admin.fedoraproject.org/mailman/listinfo/389-users > > -- > 389 users mailing list > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > <mailto:389-users@xxxxxxxxxxxxxxxxxxxxxxx> > https://admin.fedoraproject.org/mailman/listinfo/389-users > > > > > -- > ----------------------------------------------------- > Fedora-ambassadors-list mailing list > Fedora-ambassadors-list@xxxxxxxxxx > <mailto:Fedora-ambassadors-list@xxxxxxxxxx> > Olpc mailing list > olpc-open@xxxxxxxxxx <mailto:olpc-open@xxxxxxxxxx> > ------------------------------------------------------------------------ > > -- > 389 users mailing list > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
