Date: Sun, 21 Aug 2011 19:50:08 GMT From: Harry Coin <harrycoin@aol.com> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/159943: openldap slapd ignores rc.conf slapd_krt5_ktname Message-ID: <201108211950.p7LJo8km011305@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/159943; it has been noted by GNATS. From: Harry Coin <harrycoin@aol.com> To: bug-followup@FreeBSD.org, harrycoin@aol.com Cc: Subject: Re: ports/159943: openldap slapd ignores rc.conf slapd_krt5_ktname Date: Sun, 21 Aug 2011 14:46:33 -0500 Some corrections to the above. 1. The last paragraph in 'how to repeat' should be ignored. Somehow I cut it but it got posted anyhow. 2. In the workaround, delete the last two graphs, replace krb5.conf instead of krb5.keytab. Should be: use ktutil remove -k /etc/krb5.host.keytab ldap (and anything else other than the host/... keys). Use kadmin to create /etc/krb5.keytab with only the ldap/... key in it, then chown ldap:ldap /etc/krb5.keytab. Restart kerberos and slapd. ldapwhoami then works once again, and the host key is separate from the ldap key.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201108211950.p7LJo8km011305>