OpenLDAP/SASL/Kerberos HOWTO
Found this article on grand unification using Keberos and OpenLDAP. This may come in handy later if we move towards SSO-like solutions in the office, using kerberos to take over what we’re using NIS for right now. He talks a bit about getting miscellaneous applications, such as CVS, Cyrus IMAP, etc., working.
Why do people pick things like Netegrity when there’s an old, proven solution with Kerberos? Not sure. I’m still trying to understand the full implications of these pieces of software. One thing Netegrity and presumably other commercial SSO solutions do is control both authentication and authorization. Kerberos doesn’t obviously control authorization; you can probably get it to do this, but it won’t be in one ready made package.
Other kerberos documentation links:
March 12th, 2003 at 9:21 pm
please tell me how to config, handle and use SASL for openldap of linux