Hi,
Figured it out.
First check the service is running as normal. Then do:
This will give you the pid number, so then run:
Code:
sudo strace -o /tmp/dumpslapd.log -f -s 1024 -p <insert pid>
Then open another terminal window and carry out your test in that. Once you're finished testing, hit Ctrl+C in the one where strace is running.
The problem was not GSSAPI, the problem was that the openldap user did not have permission to access a file. Looking back through the strace output to where the error message was, I could see just before the error output a file read attempt being denied, and the full path of the file.
Regards,
Rob.