Matthew,
Sorry, I forgot to include the slapd server log as requested.
This looks like you added -d to your ldapmodify. More useful here would be server logs; try running slapd with -d 263 so we can see more of what the server is trying. (1+2+4+256)
Oct 19 12:08:02 server slapd[15863]: @(#) $OpenLDAP: slapd 2.4.19 (Oct 15 2009 16:33:37) $ ^Imkd@build:/sysvol/ldap/src/openldap-2.4.19/servers/slapd Oct 19 12:08:04 server slapd[15863]: slapd starting Oct 19 12:08:08 server slapd[15863]: conn=0 fd=13 ACCEPT from IP=<IP>:34472 (IP=<IP>:63600) Oct 19 12:08:08 server slapd[15863]: conn=0 fd=13 TLS established tls_ssf=128 ssf=128 Oct 19 12:08:08 server slapd[15863]: conn=0 op=0 SRCH base="" scope=0 deref=0 filter="(objectClass=*)" Oct 19 12:08:08 server slapd[15863]: conn=0 op=0 SRCH attr=supportedSASLMechanisms Oct 19 12:08:08 server slapd[15863]: conn=0 op=0 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 19 12:08:08 server slapd[15863]: conn=0 op=1 BIND dn="" method=163 Oct 19 12:08:08 server slapd[15863]: conn=0 op=1 RESULT tag=97 err=14 text=SASL(0): successful result: security flags do not match required Oct 19 12:08:08 server slapd[15863]: conn=0 op=2 BIND dn="" method=163 Oct 19 12:08:08 server slapd[15863]: conn=0 op=2 RESULT tag=97 err=14 text=SASL(0): successful result: security flags do not match required Oct 19 12:08:08 server slapd[15863]: connection_input: conn=0 deferring operation: binding Oct 19 12:08:08 server slapd[15863]: conn=0 op=3 BIND dn="" method=163 Oct 19 12:08:08 server slapd[15863]: conn=0 op=3 BIND authcid="user/root@cs.brown.edu" authzid="user/root@cs.brown.edu" Oct 19 12:08:08 server slapd[15863]: conn=0 op=3 BIND dn="uid=user/root,cn=cs.brown.edu,cn=gssapi,cn=auth" mech=GSSAPI sasl_ssf=56 ssf=128 Oct 19 12:08:08 server slapd[15863]: conn=0 op=3 RESULT tag=97 err=0 text= Oct 19 12:11:57 server slapd[15863]: conn=0 fd=13 closed (connection lost)
Unfortunately, it doesn't provide much information at this debug level, should I crank it up further?
Thanks,
Mark