«
»

OpenLDAP/SASL/Kerberos HOWTO

Found this article on grand unification using Keberos and OpenLDAP. This may come in handy later if we move towards SSO-like solutions in the office, using kerberos to take over what we’re using NIS for right now. He talks a bit about getting miscellaneous applications, such as CVS, Cyrus IMAP, etc., working.

Why do people pick things like Netegrity when there’s an old, proven solution with Kerberos? Not sure. I’m still trying to understand the full implications of these pieces of software. One thing Netegrity and presumably other commercial SSO solutions do is control both authentication and authorization. Kerberos doesn’t obviously control authorization; you can probably get it to do this, but it won’t be in one ready made package.

Other kerberos documentation links:

  • A message on the MIT kerberos mailing list.

  • Brian Tung’s The Moron’s Guide To Kerberos. He also wrote the only Kerberos book available on Amazon.

  • MIT’s page of pointers.

    • Posted on Wednesday, February 5th, 2003 at 11:47 pm and is filed under Tech. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

    One Response to “OpenLDAP/SASL/Kerberos HOWTO”

    1. name Says:
      March 12th, 2003 at 9:21 pm

      please tell me how to config, handle and use SASL for openldap of linux