From owner-freebsd-stable@FreeBSD.ORG Thu Sep 2 13:58:04 2010 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 038E41065697 for ; Thu, 2 Sep 2010 13:58:04 +0000 (UTC) (envelope-from me@janh.de) Received: from mailhost.uni-hamburg.de (mailhost.uni-hamburg.de [134.100.32.155]) by mx1.freebsd.org (Postfix) with ESMTP id B04298FC1B for ; Thu, 2 Sep 2010 13:58:03 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mailhost.uni-hamburg.de (Postfix) with ESMTP id D5F1A908DE; Thu, 2 Sep 2010 15:58:02 +0200 (CEST) X-Virus-Scanned: by University of Hamburg (RRZ/mailhost) Received: from mailhost.uni-hamburg.de ([127.0.0.1]) by localhost (mailhost.uni-hamburg.de [127.0.0.1]) (amavisd-new, port 10024) with LMTP id fsT3DYRMQimW; Thu, 2 Sep 2010 15:58:02 +0200 (CEST) Received: from nb895.math (g224012120.adsl.alicedsl.de [92.224.12.120]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) (Authenticated sender: fmjv004) by mailhost.uni-hamburg.de (Postfix) with ESMTPSA id 94A16908E0; Thu, 2 Sep 2010 15:58:02 +0200 (CEST) Message-ID: <4C7FAD64.40807@janh.de> Date: Thu, 02 Sep 2010 15:57:56 +0200 From: Jan Henrik Sylvester User-Agent: Mozilla/5.0 (X11; U; FreeBSD amd64; en-US; rv:1.9.1.11) Gecko/20100821 Thunderbird/3.0.6 MIME-Version: 1.0 To: Reko Turja References: <4C7E803F.1090606@janh.de> <99188991995E491B8101975CE4485ECC@rivendell> In-Reply-To: <99188991995E491B8101975CE4485ECC@rivendell> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: stable-list freebsd Subject: Re: GSSAPI (for OpenLDAP) on FreeBSD 8? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Sep 2010 13:58:04 -0000 On 09/02/2010 14:30, Reko Turja wrote: > -------------------------------------------------- > From: "Jan Henrik Sylvester" > Sent: Wednesday, September 01, 2010 7:33 PM > To: "stable-list freebsd" > Subject: GSSAPI (for OpenLDAP) on FreeBSD 8? > >> Does anyone have OpenLDAP+GSSAPI running on FreeBSD 8? With the >> libgssapi patch? With the heimdal-1.2 port? > > I got running and fully functional Heimdal/GSSAPI setup with Benjamins > patch from http://www.freebsd.org/cgi/query-pr.cgi?pr=147454&cat=kern, > although I didn't test it with LDAP. Still my question, do I only have to patch the ldap server or the client doing gssapi ldap queries -- or even the kerberos server? Would a heimdal port be an alternative? Would that only have to be running on the ldap server or the client, too? Sorry, my understanding of gssapi is limited. Thanks, Jan Henrik