SASL/GSSAPI problems
Hans Aschauer
Hans.Aschauer at epost.de
Wed Nov 3 10:05:34 CET 2004
[to list and OP]
On Saturday 30 October 2004 02:07, Wido Depping wrote:
> Hi All,
> some users of Luma ( http://luma.sf.net ) have problems with binding
> to a directory using the SASL/GSSAPI method. All these people have a
> working Kerberos environment and using SASL/MD5 work flawlessly.
> Here's the output they get from the console:
>
> SASL/GSSAPI authentication started
> Error during LDAP bind request
> Reason: {'info': 'SASL(0): successful result: ', 'desc': 'Local error'}
This error is most likely due to a wrong setup of kerberos <-> LDAP, and has
probably nothing to do with python-ldap. The luma users might look at
http://www.bayour.com/LDAPv3-HOWTO.html
which is a great HOWTO for setting up a working ldap server with GSSAPI
authentication. It also explains the reasons for a 'local error'. BTW, it was
some time ago that I last looked at python-ldap, but I think that it still is
built on top of the openldap-libraries. So SASL/GSSAPI will work only if it
also works using ldapsearch (and vice versa(?)).
Hans
More information about the python-ldap
mailing list