574
Novell eDirectory 8.8 Administration Guide
no
vd
ocx (
E
NU)
01
F
ebr
ua
ry
200
6
5
Click
OK
to set the password.
6
(Optional) To set the password for another principal, click
Repeat Task
.
E.3.4 Editing Foreign Principals
You can add Kerberos principal names to the eDirectory users using iManager.
1
In iManager, click
Kerberos Management
>
Edit Foreign Principals
to open the Edit Foreign
Principals page.
2
Specify the FDN of a valid User object or use the
Object Selector
icon to select the User object
reference.
3
Click
OK
.
4
Specify the foreign principal names, then click
Add
.
The principal name must be in the format principalname@
REALMNAME
.
To delete the foreign principal name, select the name and then click Delete .
5
Click
OK
.
E.4 Creating a Login Sequence
For information on creating a login sequence, refer to the Managing Login Sequences section in the
NMAS 3.0 Administration Guide
(http://www.novell.com/documentation/beta/nmas30/
index.html?page=/documentation/beta/nmas30/admin/data/a49tuwk.html#a4)
.
E.5 How Does LDAP Use SASL-GSSAPI?
Once you have configured SASL-GSSAPI, it is added along with the other SASL methods to the
supportedSASLMechanisms attribute in rootDSE.
The LDAP server queries SASL for the installed mechanisms when it gets its configuration, and
automatically supports whatever is installed. The LDAP server also reports the current supported
SASL mechanisms in its rootDSE by using the supportedSASLMechanisms attribute.
Therefore, once you configure GSSAPI, it becomes the default mechanism.
However, to specifically do an LDAP operation over the SASL GSSAPI mechanism, you can
mention GSSAPI at the commandline.
For example, in OpenLDAP to do a search using the GSSAPI mechanism, enter the following:
ldapsearch -Y GSSAPI -h 164.99.146.48 -b "" -s base
E.6 Error Messages
The SASL-GSSAPI error messages are logged into the following locations:
• Linux and UNIX:
ndsd.log
• NetWare: logger screen
• Windows:
c:\temp\saslgss.log
Summary of Contents for EDIRECTORY 8.8 - GUIDE
Page 4: ...novdocx ENU 01 February 2006...
Page 16: ...16 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 68: ...68 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 90: ...90 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 116: ...116 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 128: ...128 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 184: ...184 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 249: ...250 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 307: ...308 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 333: ...334 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 371: ...372 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 439: ...440 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 519: ...520 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 529: ...530 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 555: ...556 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...