From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: From: Epiphanov Sergei To: =?windows-1251?b?0ODx8fvr6uAgU2lzeXBodXM=?= User-Agent: KMail/1.7.2 MIME-Version: 1.0 Content-Disposition: inline Date: Mon, 14 Feb 2005 13:39:24 +0300 Content-Type: text/plain; charset="windows-1251" Message-Id: <200502141339.24474.serpiph@nikiet.ru> Content-Transfer-Encoding: quoted-printable Subject: [sisyphus] OpenLDAP+SASL(DIGEST-MD5) X-BeenThere: sisyphus@altlinux.ru X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ALT Linux Sisyphus discussion list List-Id: ALT Linux Sisyphus discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Feb 2005 10:38:44 -0000 Archived-At: List-Archive: =CF=F0=EE=F8=F3 =EF=EE=F1=EB=E0=F2=FC =EC=ED=E5 =EB=E8=F7=ED=EE =F5=EE=F2= =FF =E1=FB =EA=E0=EA=E8=E5-=ED=E8=E1=F3=E4=FC =F1=F1=FB=EB=EA=E8 =EA=E0=EA= =E7=E0=EF=EE=EB=F3=F7=E8=F2=FC =F0=E5=E3=E8=F1=F2=F0=E0=F6=E8=FE =E2 OpenLDAP =F7=E5=F0=E5=E7 SASL (=F3 =EA=EE=E3=EE =F0=E0=E1=EE=F2=E0=E5= =F2), =F7=F2=EE=E1=FB =EF=E0=F0=EE=EB=E8 =F5=F0=E0=ED=E8=EB=E8=F1=FC =E2 = OpenLDAP. =CF=E8=F8=F3 =F1=FE=E4=E0, =F2=E0=EA =EA=E0=EA =E2 =C8=ED=F2=E5=F0=ED=E5=F2= =E5 =ED=F3=E6=ED=EE=E9 =E8=ED=F4=EE=F0=EC=E0=F6=E8=E8 =ED=E5 =ED=E0=F8=B8= =EB, =E2 Community =F2=E0=EA =ED=E8=F7=E5=E3=EE =E8 =ED=E5 =F1=EA=E0=E7=E0=EB=E8. =CF=EE=EC=EE= =E3=E8=F2=E5, =E1=F3=E1=E5=ED =ED=E5 =F0=E0=E1=EE=F2=E0=E5=F2... =CF=F0=EE=E1=EE=E2=E0=EB =F7=E5=F0=E5=E7 =E4=EE=EA=F3=EC=E5=ED=F2=E0=F6=E8= =FE OpenLDAP, =EF=F0=EE=EF=E8=F1=E0=EB =ED=F3=E6=ED=FB=E5 sasl-regexp, =EF=F0=EE=EF=E8=F1=E0=EB =E2 rootDSE =EF=E0=F0=E0=EC=E5=F2=F0 supportedSASLMechanisms: DIGEST-MD5 SIMPLE =F0=E5=E3=E8=F1=F2=F0=E0=F6=E8=FF =F0=E0=E1=EE=F2=E0=E5=F2, =E7=E0= =EF=F3=F9=E5=ED saslauthd, =EA=EE=EC=E0=ED=E4=E0 testauthd =EF=F0=EE=F5=EE= =E4=E8=F2 =ED=EE=F0=EC=E0=EB=FC=ED=EE. =CF=F0=E8 =EF=EE=EF=FB=F2=EA=E5 =EF=F0=EE=E9= =F2=E8 =F0=E5=E3=E8=F1=F2=F0=E0=F6=E8=FE =F7=E5=F0=E5=E7 SASL =EF=EE=EB=F3= =F7=E0=FE: $ ldapsearch -U user@realm -W -b "dc=3Dexample,dc=3Dcom" Enter LDAP Password: SASL/DIGEST-MD5 authentication started ldap_sasl_interactive_bind_s: Authentication method not supported (7) additional info: SASL(-4): no mechanism available: Couldn't find = mech DIGEST-MD5 $testsaslauthd -u user -p test 0: OK "Success." $ ldapsearch -x -D "uid=3Duser,ou=3Dpeople,dc=3Dexample,dc=3Dcom" -W -b=20 "dc=3Dexample,dc=3Dcom" ... =E2=FB=E4=E0=B8=F2 =F2=E5=EA=F1=F2 =E8=E7 =E1=E0=E7=FB ... $ cat /etc/openldap/rootDSE.ldif dn: vendorName: The OpenLDAP Project supportedSASLMechanisms: DIGEST-MD5 =C2 /etc/openldap/slapd.conf =E5=F1=F2=FC =F1=F2=F0=EE=EA=E8: sasl-regexp uid=3D(.*),cn=3Drealm,cn=3DDIGEST-MD5,cn=3Dauth uid=3D$1,ou=3Dpeople,dc=3Dexample,dc=3Dcom sasl-regexp uid=3D(.*),cn=3DDIGEST-MD5,cn=3Dauth uid=3D$1,ou=3Dpeople,dc=3Dexample,dc=3Dcom =CA=EE=E2=FB=F0=FF=ED=E8=E5 =EE=E1=ED=E0=F0=F3=E6=E8=EB=EE, =F7=F2=EE =ED= =E5=F2 =EE=E1=F0=E0=E1=EE=F2=EA=E8 root_dse_info, =E2 =EA=EE=F2=EE=F0=EE=E9 =E8=E4=B8=F2 =F1=EE=E7=E4=E0=ED=E8=E5 =E0=F2=F0=E8=E1=F3=F2=EE=E2 rootDSE= (=E3=E4=E5, =EA=F1=F2=E0=F2=E8 =E8 =EF=EE=FF=E2=EB=FF=FE=F2=F1=FF supportedSASLMechanisms). =CF=F0=E0=E2 =FF =E8=EB=E8 =ED=E5=F2?=20 --=20 =D1 =F3=E2=E0=E6=E5=ED=E8=E5=EC, =C5=EF=E8=F4=E0=ED=EE=E2 =D1=E5=F0=E3=E5= =E9