From owner-freebsd-ports@FreeBSD.ORG Wed Jun 1 11:01:45 2005 Return-Path: X-Original-To: freebsd-ports@freebsd.org Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EC7F016A41C for ; Wed, 1 Jun 2005 11:01:45 +0000 (GMT) (envelope-from bsam@bsam.ru) Received: from bsam.ru (gw.ipt.ru [80.253.10.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 95CB843D1F for ; Wed, 1 Jun 2005 11:01:44 +0000 (GMT) (envelope-from bsam@bsam.ru) Received: from bsam by bsam.ru with local (Exim 4.30; FreeBSD) id 1DdQzk-0002WX-Ip; Wed, 01 Jun 2005 15:02:44 +0400 To: fandino@ng.fadesa.es References: <429D8B3B.50203@ng.fadesa.es> From: Boris Samorodov Date: Wed, 01 Jun 2005 15:02:44 +0400 In-Reply-To: <429D8B3B.50203@ng.fadesa.es> (fandino@ng.fadesa.es's message of "Wed, 01 Jun 2005 12:17:31 +0200") Message-ID: <29469499@srv.sem.ipt.ru> User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.0.50 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: "Boris B. Samorodov" Cc: freebsd-ports@freebsd.org Subject: Re: kadmin (heimdal port) ignores the ldap backend X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Jun 2005 11:01:46 -0000 On Wed, 01 Jun 2005 12:17:31 +0200 fandino wrote: > Hello, > I'm testing a new configuration with heimdal and the ldap backend > but kadmin is completely ignoring the ldap directive in the dbname > definition. > last cvsup of the ports was yesterday and LDAP was defined in > the heimdal port config: > root@damocles:/usr/ports/security/heimdal# make showconfig > ===> The following configuration options are set for heimdal-0.6.3_2: > LDAP=on "Use OpenLDAP as the KDC backend" > CRACKLIB=on "Use CrackLib for password quality checking" > X11=on "Build X11 utilies > and indeed it's linked with ldap as you can see: > # ldd /usr/local/sbin/kadmin > /usr/local/sbin/kadmin: > .... > libldap-2.2.so.7 => /usr/local/lib/libldap-2.2.so.7 (0x2812c000) > liblber-2.2.so.7 => /usr/local/lib/liblber-2.2.so.7 (0x2818a000) > .... > when the realm is initied kadmin creates a couple of files with the literal > dbname definition (adding ldap: as filename prefix) instead of contacting > the openldap server. > # /usr/local/sbin/kadmin -l > kadmin> init OLIMPUS > Realm max ticket life [unlimited]: > Realm max renewable ticket life [unlimited]: > # ls -l > ... > -rw------- 1 root wheel 32768 May 31 10:19 ldap:ou=gods,dc=olimpus.db > -rw------- 1 root wheel 7584 May 31 10:19 ldap:ou=gods,dc=olimpus.log > ... > anyone knows what I'm missing? What version of FreeBSD do you have? 5.4-RELEASE has heimdal 0.6.3 at the base system. Do you build FreeBSD with Kerberos support? There may be system libraries located earlier in LDD_PATH which kadmin uses. Try ktrace and kdump to see which libraries are used at run-time. WBR -- bsam