[Samba] ldap not using kerberos (winbind rid idmap)

Roman Sommer roman.sommer at gmail.com
Fri Jan 27 15:15:40 GMT 2006

thanks for your reply.
I was more thinking in terms of "how to kerberize ldap queries" rather
than how to enable SSL/TLS :) Or is this setting supposed to enable
spnego encrypted queries?

regards, Roman

Gerald (Jerry) Carter wrote:
> Roman Sommer wrote:
>>> too. In fact ldap even asks for available SASL mechanisms. 
>>> After some negotiation it _successfully_ binds using GSS SPNEGO.
>>> But.. even after this successfully established encrypted bind it
>>> keeps querying in plain text. Is there anything I can do about it?
> Try using the StartTLS support for Windows 2003 in Samba 3.0.21
> and later.
> cheers, jerry
> =====================================================================
> I live in a Reply-to-All world.               -----------------------
> Samba                                    ------- http://www.samba.org
> Centeris                         -----------  http://www.centeris.com

More information about the samba mailing list