I was wondering if their was a way to use kerberos 5 and openldap. I have only found ways to use kerberos 4. If it is possible could someone point me to an article on how to do it. I am trying to use openldap and kerberos 5 with samba without windows 200x server.

krb5-1.3.3
openldap-2.1.30

I assume you mean compiling openldap yourself, right?

According to the BLFS book (the page on openldap is here: http://www.linuxfromscratch.org/blfs/view/cvs/server/openldap.html), you don't have to do anything when compiling it. Just make sure Kerberos 5 is installed, and supposedly the openldap configure script will pick up on that.

There is also the OpenLDAP page (http://www.openldap.org/doc/admin21/guide.html#Prerequisite%20software) on Kerberos. It isn't much help either though...

There's also a section on GSSAPI (http://www.openldap.org/doc/admin21/guide.html#SASL%20Authentication) in the docs for authentication; supposedly GSSAPI is synonymous with Kerberos 5. But that appears to be SASL specific, so maybe you need SASL installed too?

i'm attempting to setup a similiar system. i ran into a mit kerberos 5+ openldap problem over, if i remember correctly the threading handling between the two ar incompatible with each other. so the suggested solution was to use the other popular kerberos service, heimdal.

of course i haven't got openldap with heimdal to work either, but thats what i got from reading the ldap mailing lists.