openldap-software May 2010 archive
Main Archive Page > Month Archives  > openldap-software archives
openldap-software: how to NOT use SASL

how to NOT use SASL

From: Frank Van Damme <frank.vandamme_at_nospam>
Date: Tue May 11 2010 - 10:48:49 GMT
To: openldap-software@openldap.org

Hi list,

Now this is something I don't understand. TSL shouldn't require the
use of sasl, logically speaking, yet why am I getting this output?

frvdamme@osc1:~$ ldapsearch -w dd -D
'cn=admin,dc=otec,dc=vub,dc=ac,dc=be' '(cn=admin)' -H
ldap://localhost -x
ldap_bind: Invalid credentials (49)
frvdamme@osc1:~$ ldapsearch -w dd -D
'cn=admin,dc=otec,dc=vub,dc=ac,dc=be' '(cn=admin)' -x -H ldap://osc1
-x
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)

So the only difference is how I specify the hostname and ldapsearch
chooses to use sasl, even though I'm specifying -x. Why??

-- Frank Van Damme A: Because it destroys the flow of the conversation. Q: Why is it bad? A: No, it's bad. Q: Should I top post in replies to mailing lists or on Usenet?