Xenial verification
Reproducing the error: root@xenial-openldap-saslauthd-1557157:~# ldapsearch -H ldapi:/// -LLL -b 'dc=example,dc=com' -s base -U root -Y PLAIN SASL/PLAIN authentication started Please enter your password: ldap_sasl_interactive_bind_s: Other (e.g., implementation specific) error (80) additional info: SASL(-1): generic failure: Password verification failed
And dmesg: [qua jul 8 11:50:42 2020] audit: type=1400 audit(1594219843.513:405): apparmor="DENIED" operation="connect" namespace="root//lxd-xenial-openldap-saslauthd-1557157_<var-snap-lxd-common-lxd>" profile="/usr/sbin/slapd" name="/run/saslauthd/mux" pid=83468 comm="slapd" requested_mask="wr" denied_mask="wr" fsuid=1000112 ouid=1000000
With the updated packages, ldapsearch works: root@xenial-openldap-saslauthd-1557157:~# apt-cache policy slapd slapd: Installed: 2.4.42+dfsg-2ubuntu3.9 Candidate: 2.4.42+dfsg-2ubuntu3.9 Version table: *** 2.4.42+dfsg-2ubuntu3.9 500 500 http://br.archive.ubuntu.com/ubuntu xenial-proposed/main amd64 Packages 100 /var/lib/dpkg/status ...
root@xenial-openldap-saslauthd-1557157:~# ldapsearch -H ldapi:/// -LLL -b 'dc=example,dc=com' -s base -U root -Y PLAIN SASL/PLAIN authentication started Please enter your password: SASL username: root SASL SSF: 0 dn: dc=example,dc=com objectClass: top objectClass: dcObject objectClass: organization o: example dc: example
And no dmesg apparmor error.
Xenial verification succeeded.
Xenial verification
Reproducing the error: openldap- saslauthd- 1557157: ~# ldapsearch -H ldapi:/// -LLL -b 'dc=example,dc=com' -s base -U root -Y PLAIN interactive_ bind_s: Other (e.g., implementation specific) error (80)
root@xenial-
SASL/PLAIN authentication started
Please enter your password:
ldap_sasl_
additional info: SASL(-1): generic failure: Password verification failed
And dmesg: 3.513:405) : apparmor="DENIED" operation="connect" namespace= "root// lxd-xenial- openldap- saslauthd- 1557157_ <var-snap- lxd-common- lxd>" profile= "/usr/sbin/ slapd" name="/ run/saslauthd/ mux" pid=83468 comm="slapd" requested_mask="wr" denied_mask="wr" fsuid=1000112 ouid=1000000
[qua jul 8 11:50:42 2020] audit: type=1400 audit(159421984
With the updated packages, ldapsearch works: openldap- saslauthd- 1557157: ~# apt-cache policy slapd dfsg-2ubuntu3. 9 dfsg-2ubuntu3. 9 dfsg-2ubuntu3. 9 500 br.archive. ubuntu. com/ubuntu xenial- proposed/ main amd64 Packages dpkg/status
root@xenial-
slapd:
Installed: 2.4.42+
Candidate: 2.4.42+
Version table:
*** 2.4.42+
500 http://
100 /var/lib/
...
root@xenial- openldap- saslauthd- 1557157: ~# ldapsearch -H ldapi:/// -LLL -b 'dc=example,dc=com' -s base -U root -Y PLAIN
SASL/PLAIN authentication started
Please enter your password:
SASL username: root
SASL SSF: 0
dn: dc=example,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
o: example
dc: example
And no dmesg apparmor error.
Xenial verification succeeded.