LDAP_AUTH_METHOD_NOT_SUPPORTED with ldap_sasl_bind - openldap-technical - openldap.org

2023

January

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

December

LDAP_AUTH_METHOD_NOT_SUPPORTED with ldap_sasl_bind

Can't get password passthrough to...

detecting password expiration...

Thilko Richter

Tuesday, 16 March 2010 Tue, 16 Mar '10

2:08 a.m.

Hi, obviously I don´t have an appropriate 'supportedSASLMechanisms:' entry. But after adding supportedSASLMechanisms: PLAIN to some ldap entries, the ldap_sasl_bin still does not work. Where I have to add these informations, and are they correct for a simple bind? Thx, Thilko

Reply

Show replies by date

Dieter Kluenter

Tuesday, 16 March Tue, 16 Mar

3:18 a.m.

Thilko Richter <thilko.richter(a)googlemail.com> writes:

Hi, obviously I don´t have an appropriate 'supportedSASLMechanisms:' entry. But after adding supportedSASLMechanisms: PLAIN to some ldap entries, the ldap_sasl_bin still does not work. Where I have to add these informations, and are they correct for a simple bind?

PLAIN is only enabled with a secured session, that is, TLS or ldapi. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:8EF7B6C6 53°37'09,95"N 10°08'02,42"E

Reply

Thilko Richter

4:42 a.m.

So is there any way to do an simple bind over sasl without ssl/tls, just with the plaintext cred? Thilko Am 16.03.2010 um 08:18 schrieb Dieter Kluenter:

Thilko Richter <thilko.richter(a)googlemail.com> writes: > Hi, > > obviously I don´t have an appropriate 'supportedSASLMechanisms:' > entry. But after adding > > supportedSASLMechanisms: PLAIN > > to some ldap entries, the ldap_sasl_bin still does not work. Where I > have to add these informations, and are they correct for a simple > bind? PLAIN is only enabled with a secured session, that is, TLS or ldapi. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:8EF7B6C6 53°37'09,95"N 10°08'02,42"E

Reply

Dieter Kluenter

5:35 a.m.

Thilko Richter <thilko.richter(a)googlemail.com> writes:

So is there any way to do an simple bind over sasl without ssl/tls, just with the plaintext cred?

Just use a challenge/response SASL Mechanism like DIGEST-MD5 -Dieter

Am 16.03.2010 um 08:18 schrieb Dieter Kluenter: > Thilko Richter <thilko.richter(a)googlemail.com> writes: > >> Hi, >> >> obviously I don´t have an appropriate 'supportedSASLMechanisms:' >> entry. But after adding >> >> supportedSASLMechanisms: PLAIN >> >> to some ldap entries, the ldap_sasl_bin still does not work. Where I >> have to add these informations, and are they correct for a simple >> bind? > > PLAIN is only enabled with a secured session, that is, TLS or ldapi. > > -Dieter > > -- > Dieter Klünter | Systemberatung > http://dkluenter.de > GPG Key ID:8EF7B6C6 > 53°37'09,95"N > 10°08'02,42"E

-- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:8EF7B6C6 53°37'09,95"N 10°08'02,42"E

Reply

4700

days inactive

4700

days old

openldap-technical@openldap.org

Manage subscription

3 comments

2 participants

tags (0)

participants (2)

Dieter Kluenter
Thilko Richter