In case someone else runs into this problem, it seems that by default the redhat Kerberos RPM is not installed with LDAP support, there are flags at the top of the spec file to change this:
# Define WITH_LDAP to get the krb5-server-ldap subpackage, and define both # WITH_LDAP and ONLY_LDAP to make it the only subpackage. %define WITH_LDAP 1 %define ONLY_LDAP 0 %define WITH_DIRSRV 0 MAT On 12/11/08 1:25 PM, "Mathew Rowley" <[email protected]> wrote: > Has anyone used the kldap db module on redhat? I have OpenLDAP and Kerberos > installed via redhat packages, but when attempting to start krb5kdc, I get > the following error: > > krb5kdc: Unable to find requested database type - while initializing > database for realm BLAH.COM > > It sounds like the module is not loading properly, or not installed. Any > ideas? > > Here is my krb5.conf additions: > [dbdefaults] > ldap_kerberos_container_dn = cn=krbcontainer,o=com > [dbmodules] > openldap_ldapconf = { > db_library = kldap > ldap_kerberos_container_dn = cn=krbcontainer,o=com > ldap_kdc_dn = "cn=krbadmin,o=com" > ldap_kadmind_dn = "cn=krbadmin,o=com" > ldap_service_password_file = /etc/kerberos/service.keyfile > ldap_servers = ldap://ipa01.security.lab.comcast.com > ldap_conns_per_server = 5 > } > > -- > MAT > > ________________________________________________ > Kerberos mailing list [email protected] > https://mailman.mit.edu/mailman/listinfo/kerberos > ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
