Hello,
Thanks for the answer! What function should I use if I must supply username/password and I want to bind using GSSAPI? Is it possible somehow with Open LDAP?
Regards, Arpad
Quanah Gibson-Mount quanah@symas.com ezt írta (időpont: 2021. jan. 27., Sze, 18:10):
--On Wednesday, January 27, 2021 4:16 PM +0100 Árpád Nagy arpadnagy.bp@gmail.com wrote:
According this it is executed only if 'dn' and 'creds' is NULL. My question is how can I set the user name and password which I want to authenticate on LDAP server?
Using GSSAPI implies that the connecting client already has access to a kerberos5 ticket, which is used for the authentication step and thus there is no username or password to be supplied.
If you must supply a username/password, then you're using the wrong function.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Friday, January 29, 2021 1:55 PM +0100 Árpád Nagy arpadnagy.bp@gmail.com wrote:
Hello,
Thanks for the answer! What function should I use if I must supply username/password and I want to bind using GSSAPI? Is it possible somehow with Open LDAP?
Luckily for you, OpenLDAP is open source software. You can literally *read the code* to discover how it works!
I would note that LDAP does not use "usernames", it uses DNs (just a point of clarification), when doing simple binds.
You should likely start with the ldap_bind(3) man page, specifically reading up on the ldap_sasl_bind_s function. I would then suggest reading over the code for the LDAP client utilities if you want functional examples for C.
https://git.openldap.org/openldap/openldap/-/tree/master/clients/tools
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org
-
Quanah Gibson-Mount -
Árpád Nagy