I thought that enabling sasl in OpenLDAP allows sasl auth mechanism (but not neccessarily agains ldap just because I build sasl with_ldap) and having sasl --with_ldap let other aplications (like postfix) authenticate against LDAP.
Mainly I whant postix to be able to auth clients agains LDAP, so sasl --with_ldap seams to be necessary. In respect to OpenLDAP authentication, I'm not shure where it will be necessary. To allow querys/changes to the LDAP database I use client_host_addr for querys and self ACL for changes, so I guess I could leave OpenLDAP without_sasl Cópia Thomas Lotterer <[EMAIL PROTECTED]>: > On Mon, Dec 08, 2003, [EMAIL PROTECTED] wrote: > > > I whant to enable sasl in OpenLDAP, that required me to install sasl. > This in > > turn have an option to enable LDAP, but if set, it requires OpenLDAP > to be > > installed. > > > > How should I proceed ? > > > > Do I need to install OpenLDAP without sasl to be able to compile > sasl > > --with_ldap, and then recompile OpenLDAP --with_sasl ? > > > The two options are mutually exclusive. > > Building "openldap" with_sasl means that OpenLDAP can use SASL > mechanisms for authentication. > > Building "sasl" with_ldap means that SASL can use (Open)LDAP as > password > backend store. > > It is not possible to authenticate to the backend store using a > mechanism that pulls out the password from that backend store :-) > > -- > [EMAIL PROTECTED], Cable & Wireless > ______________________________________________________________________ > The OpenPKG Project www.openpkg.org > User Communication List [EMAIL PROTECTED] > ______________________________________________________________________ The OpenPKG Project www.openpkg.org User Communication List [EMAIL PROTECTED]
