LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (http://www.linuxquestions.org/questions/linux-server-73/)
-   -   Kerberos LDAP (http://www.linuxquestions.org/questions/linux-server-73/kerberos-ldap-810927/)

avatardeviva 05-29-2010 10:00 AM

Kerberos LDAP
 
Hi All,

I'm stuck on a Kerberos LDAP setup. I've basically copied and pasted the ldap configuration sample that came with the server. It gives me a "create: Invalid syntax while creating realm" every single time. I cannot get around it unless I remove the ldap portion. Here is the entire krb5.conf:

Code:

[logging]
        default = FILE:/var/log/kerberos/krb5libs.log
        kdc = FILE:/var/log/kerberos/krb5kdc.log
        admin_server = FILE:/var/log/kerberos/kadmind.log
[libdefaults]
        default_realm = <DOMAIN>.COM
        dns_lookup_kdc = false
        dns_looup_realm = false
        default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc
        default_tgs_enctypes = des3-hmac-sha1 des-cbc-crc


[realms]
        <DOMAIN>.COM = {
                default_domain = <domain>.com
                kdc = tupperserver.<domain>.com
                admin_server = tupperserver.<domain>.com
                database_module = ldap
                kpasswd_server = tupperserver.<domain>.com
        }

[domain_realm]
        .<domain>.com = <DOMAIN>.COM

[dbdefaults]
        database_module = ldap

[dbmodules]
        ldap = {
                db_library = kldap
                ldap_kerberos_container_dn = "ou=kerberos,dc=<domain>,dc=com"
                ldap_kdc_dn = "cn=ldapadmin,dc=<domain>,dc=com"
                ldap_kadmind_dn = "cn=ldapadmin,dc=<domain>,dc=com"
                ldap_service_password_file = /etc/kerberos/krb5kdc/ldap.service
                ldap_servers = ldap://127.0.0.1
                ldap_conns_per_server = 5
        }

Any thoughts on what could be causing this? I'm stumped.. its been two days now of looking at that file, sample files, moving things around, etc and still nothing.


All times are GMT -5. The time now is 09:03 AM.