View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0000125Nix[All Projects] Generalpublic2019-02-22 20:092023-09-08 13:02
ReporterimmaeAssigned Toimmae 
PrioritynormalSeverityminorReproducibilityN/A
Status feedbackResolutionopen 
Summary0000125: Add kerberos to LDAP
Description
systemd.services.openldap.environment.KRB5_KTNAME = "FILE:/var/lib/openldap/ldap.keytab";
systemd.services.openldap.environment.KRB5_CONFIG = "${/etc/krb5.conf}";
TagsNo tags attached.

Activities

immae

2019-02-22 21:19

administrator   ~0000031

https://stackoverflow.com/questions/45566096/server-ldap-example-comexample-com-not-found-in-kerberos-database

immae

2020-01-05 18:21

administrator   ~0000035

Ancienne configuration DNS:

${ips "kerberos           " servers.immaeEu.ips.main}
;_kerberos               IN TXT "IMMAE.EU"
;_kerberos._udp          IN SRV 0 0 88 immae.eu.
;_kerberos._tcp          IN SRV 0 0 88 immae.eu.
;_kerberos-adm._tcp      IN SRV 0 0 749 immae.eu.
;_kpasswd._udp           IN SRV 0 0 464 immae.eu.

immae

2020-01-05 18:38

administrator   ~0000036

Ancienne configuration ldap

sasl-host immae.eu
authz-regexp
  uid=([^,]*)(,cn=IMMAE.EU)?,cn=(gssapi|gss-spnego),cn=auth
  uid=$1,ou=users,dc=immae,dc=eu

access to attrs=userPassword,shadowLastChange,krbPrincipalKey
          by dn="cn=kerberos,ou=services,dc=immae,dc=eu" write
          by self write
          by anonymous auth
          by * none

immae

2023-09-08 13:02

administrator   ~0000042

Not sure this is still needed, if we migrate to "declarative" openldap schema

Issue History

Date Modified Username Field Change
2019-02-22 20:09 immae New Issue
2019-02-22 21:19 immae Note Added: 0000031
2020-01-05 18:21 immae Note Added: 0000035
2020-01-05 18:38 immae Note Added: 0000036
2023-09-08 13:02 immae Assigned To => immae
2023-09-08 13:02 immae Status new => feedback
2023-09-08 13:02 immae Note Added: 0000042