[KLUG Members] Managing AD from Linux?

Bruce Smith bruce at armintl.com
Fri Dec 30 13:40:30 EST 2005

Previous message: [KLUG Members] Managing AD from Linux?
Next message: [KLUG Members] Managing AD from Linux?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > supportedSASLMechanisms: GSSAPI
> > supportedSASLMechanisms: DIGEST-MD5
> 
> It supports DIGEST-MD5 so it is worth trying an ldapmodify with an MD5
> bind (be sure to use encryption).  Level of access in AD is often
> related to the 'strength' of your connection.

I've been trying all morning without luck.  When I try digest-md5 I get:

"The digest-uri does not match any LDAP SPN's registered for this
server., data 0, vece"

I even tried GSSAPI.  I can run kinit and get a ticket from AD, 
but ldapsearch says:

"Miscellaneous failure (Server not found in Kerberos database)"

Is this because I haven't "joined the domain"?  Or there is no record in
AD for my Linux box?  (currently looking at the samba-howto to find out
how to join a domain - without luck so far)

 - BS

Previous message: [KLUG Members] Managing AD from Linux?
Next message: [KLUG Members] Managing AD from Linux?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Members mailing list