[Samba] ldap not using kerberos (winbind rid idmap)
roman.sommer at gmail.com
Fri Jan 27 15:15:40 GMT 2006
thanks for your reply.
I was more thinking in terms of "how to kerberize ldap queries" rather
than how to enable SSL/TLS :) Or is this setting supposed to enable
spnego encrypted queries?
Gerald (Jerry) Carter wrote:
> Roman Sommer wrote:
>>> too. In fact ldap even asks for available SASL mechanisms.
>>> After some negotiation it _successfully_ binds using GSS SPNEGO.
>>> But.. even after this successfully established encrypted bind it
>>> keeps querying in plain text. Is there anything I can do about it?
> Try using the StartTLS support for Windows 2003 in Samba 3.0.21
> and later.
> cheers, jerry
> I live in a Reply-to-All world. -----------------------
> Samba ------- http://www.samba.org
> Centeris ----------- http://www.centeris.com
More information about the samba