[python-ldap] Is it possible to bind using a kerberos keytab
Petr Spacek
pspacek at redhat.com
Mon Jan 5 10:09:06 CET 2015
On 30.12.2014 13:43, Kev SMITH wrote:
> ldap.LOCAL_ERROR: {'info': 'SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Server not found in Kerberos database)', 'desc': 'Local error'}
"Server not found in Kerberos database" usually indicates that:
- client is for some reason requesting wrong server name
- DNS configuration is wrong and DNS name canonization in Kerberos libs leads
to wrong server name even though client originally requested correct name.
I would recommend you to run tcpdump/wireshark and compare 'Server name' in
requests sent from ldapsearch and Python LDAP client.
--
Petr Spacek @ Red Hat
More information about the python-ldap
mailing list