directory-api mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Karim Hosny <>
Subject RE: Adding user to Active Directory with Kerberos binding
Date Thu, 26 Mar 2015 13:06:11 GMT

Hi Kiran,

I didn't get any errors im just not sure that the proper way to create a secure connection
over kerberos authentication is calling the method startTLS.

I tried to call startTLS after successful kerberos authentication and it worked fine, but
is the proper way? Should SaslGssApi create the startTLS, I believe kerberos authentication
requires creating a secure communication to transfer the tickets, correct?

-----Original Message-----
From: Kiran Ayyagari [] 
Sent: Thursday, March 26, 2015 12:40 PM
Subject: Re: Adding user to Active Directory with Kerberos binding

On Thu, Mar 26, 2015 at 3:49 PM, Karim Hosny <> wrote:

> Hi,
> So I got the certificates working and apache Directory working fine 
> over secure connection using startTLS and im able to add users, but I 
> need also to bind using Kerberos and add users but it fails when I try 
> it, my guess it requires to call startTLS probably, but from what I 
> understood you either connect using startTLS or saslGssApi correct?
bind using SaslGssApiRequest , let us know what error you got

> How can I bind using kerberos and be able to perform secure sensitive 
> operations?
> Thanks,
> Karim

Kiran Ayyagari
View raw message