Description of problem: RHEL4 version of openldap does not contain patch to fix SASL authentication following referrals, notably in nss_ldap from PADL software. This happens when querying a secondary AD catalog (instead of the master catalog) via nss_ldap. Version-Release number of selected component (if applicable): 2.2.13-7.4E Attached patch against openldap-2.2.13/libraries/libldap/cyrus.c resolves issue (after rebuilding nss_ldap, also) Patch was reconstructed from http://web.archive.org/web/20041226070511/http://www.padl.com/~lukeh/sasl.diff
Created attachment 179441 [details] Patch to resolve GSSAPI/SASL hangs when following referrals
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux maintenance release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux Update release for currently deployed products. This request is not yet committed for inclusion in an Update release.
bug report upstream: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=3298;expression=sasl.diff;statetype=-1
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2008-0701.html