Connect to the LDAP backend with SASL credentials.

This reworks our LDAP backend code to move from anonymous access to a shared-secret SASL-protected connection. (SASL selects NTLM or DIGEST-MD5 on my system). To get this working, we must pre-populate the LDAP backend with a DN to store ths SASL secret on, and we use back-ldif for this. This gives us a reasonable basis to deploy a replicated OpenLDAP backend solution. Andrew Bartlett (This used to be commit cd0745253c4a9ec59a035e830e54d74a05b71aaa)
author: Andrew Bartlett <abartlet@samba.org> 2008-07-15 15:15:12 +1000
committer: Andrew Bartlett <abartlet@samba.org> 2008-07-15 15:15:12 +1000
commit: a6b842f9634cbeb4075c2bbaf7e49c19104602be (patch)
tree: 17fae6772e9d44ab32835ab7ddc454c9a075bafa /source4/setup/secrets_sasl_ldap.ldif
parent: 403f4f94ffec28d1c1dc910e1960531f4c14534b (diff)
download: samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.gz
samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.bz2
samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/source4/setup/secrets_sasl_ldap.ldif b/source4/setup/secrets_sasl_ldap.ldif
new file mode 100644
index 0000000000..81ccfee209
--- /dev/null
+++ b/source4/setup/secrets_sasl_ldap.ldif
@@ -0,0 +1,9 @@
+dn: CN=SAMDB Credentials
+objectClass: top
+objectClass: ldapSecret
+cn: SAMDB Credentials
+secret:: ${LDAPADMINPASS_B64}
+samAccountName: ${LDAPADMINUSER}
+realm: ${LDAPADMINREALM}
+
+
author	Andrew Bartlett <abartlet@samba.org>	2008-07-15 15:15:12 +1000
committer	Andrew Bartlett <abartlet@samba.org>	2008-07-15 15:15:12 +1000
commit	a6b842f9634cbeb4075c2bbaf7e49c19104602be (patch)
tree	17fae6772e9d44ab32835ab7ddc454c9a075bafa /source4/setup/secrets_sasl_ldap.ldif
parent	403f4f94ffec28d1c1dc910e1960531f4c14534b (diff)
download	samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.gz samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.bz2 samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.zip