2011/6/28 Friedrich Locke <friedrich.lo...@gmail.com> > Dear list members, > > i have just installed openldap from ports (OpenBSD 4.9/amd64) and i am > testing it. My doubt is: > > It seems to me that openldap should be run as user "x" and group "y" > accordingly the ports collection. The problem is that i want to use > kerberos authentication. The system (OS context) is just doing > kerberos, but the keytab file is permited acess only to root. > > How could i run openldap as another user not root and provide it with > a ldap/x.y.z ticket? > > How have you done so? > > You make a specific keytab for openldap, of course readable by the ldap daemon user. There is no need to stick all keytabs in the host keytab file.
-- To our sweethearts and wives. May they never meet. -- 19th century toast