[19969] in Kerberos_V5_Development
Why kdb5_ldap_util create does not need -H but kdb5_ldap_util list
daemon@ATHENA.MIT.EDU (=?UTF-8?Q?=D0=94=D0=B8=D0=BB=D1=8F)
Fri Sep 6 11:43:34 2019
Message-ID: <c4188973c8c291a1cf5345f0fd62849554d53a08.camel@aegee.org>
From: =?UTF-8?Q?=D0=94=D0=B8=D0=BB=D1=8F=D0=BD_?=
=?UTF-8?Q?=D0=9F=D0=B0=D0=BB=D0=B0=D1=83=D0=B7=D0=BE=D0=B2?=
<dilyan.palauzov@aegee.org>
To: Greg Hudson <ghudson@mit.edu>, krbdev@mit.edu
Date: Fri, 06 Sep 2019 15:43:15 +0000
In-Reply-To: <25dbcd2f-7693-e202-271a-6279ee88af69@mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Errors-To: krbdev-bounces@mit.edu
Content-Transfer-Encoding: 8bit
Hello Greg,
thanks for your replay. I got it somehow on Monday, two days after you sent it.
• The documentation at https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/kdc_conf.html#dbdefaults suggests,
> > that if ldap_servers = ldapi://%2Fvar%2Frun%2Fldapi is in the [dbdefaults] section, then it does not have to be listed
> > in a module within [dbmodules]. I cannot confirm this.
>
> This appears to be a long-standing documentation error. I will correct
> the documentation to remove ldap_servers from the list of LDAP variables
> which can appear in [dbdefaults].
Alright. While “kdb5_ldap_util create -r Y.EXAMPLE” does take the ldap address from the ldap_servers setting for the
realm/domain, so no -H parameter is necessary, how is “kdb5_ldap_util list” supposed to obtain the address of the
ldap_server to connect to? Does it use, if -H is missing, the ldap_server of the default domain?
Regards
Дилян
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
