Bug#525785: sasl2-bin: saslauthd with kerberos5 doesn't work

Russ Allbery rra at debian.org
Mon Apr 27 07:16:17 UTC 2009


Friedemann Stoyan <fstoyan at swapon.de> writes:

> when using saslauthd with kerberos5 authentication mechanism it simply
> fails with:
> "saslauthd[10678]: do_auth: auth failure: [user=xxx] [service=ldap] [realm=xxxxxxxxxxxxx] [mech=kerberos5] [reason=saslauthd internal error]"
>
> Fix:
> Explicitly set the environment in "/etc/default/saslauthd" and point to the keytab:
> KRB5_KTNAME=/etc/krb5.keytab
>
> Please include this environment in default configuration.

That's an odd problem and fix since that's the default keytab location.
If KRB5_KTNAME isn't set in the environment, that's the path that should
be used by the library by default.

Do you have KRB5_KTNAME set in the environment before running the init
script for some reason?

-- 
Russ Allbery (rra at debian.org)               <http://www.eyrie.org/~eagle/>





More information about the Pkg-cyrus-sasl2-debian-devel mailing list