echochio

安裝 SASL

# yum install -y cyrus-sasl

編輯 /etc/sysconfig/saslauthd

SOCKETDIR=/var/run/saslauthd
MECH=ldap
FLAGS="-O /etc/saslauthd.conf"

編輯 /etc/saslauthd.conf

ldap_servers: ldap://192.168.0.200
ldap_search_base: DC=tw,DC=test
ldap_timeout: 10
ldap_filter: sAMAccountName=%U
ldap_bind_dn: CN=Administrator,CN=Users,DC=tw,DC=test
ldap_password: P@ssw0rd
ldap_deref: never
ldap_restart: yes
ldap_scope: sub
ldap_use_sasl: no
ldap_start_tls: no
ldap_version: 3
ldap_auth_method: bind

啟動服務及查看測試

# # systemctl restart saslauthd
# systemctl status saslauthd
● saslauthd.service - SASL authentication daemon.
   Loaded: loaded (/usr/lib/systemd/system/saslauthd.service; disabled; vendor preset: disabled)
   Active: active (running) since Tue 2017-05-09 09:31:52 CST; 6s ago
  Process: 2474 ExecStart=/usr/sbin/saslauthd -m $SOCKETDIR -a $MECH $FLAGS (code=exited, status=0/SUCCESS)
 Main PID: 2475 (saslauthd)
   CGroup: /system.slice/saslauthd.service
           ├─2475 /usr/sbin/saslauthd -m /var/run/saslauthd -a ldap -O /etc/saslauthd.conf
           ├─2476 /usr/sbin/saslauthd -m /var/run/saslauthd -a ldap -O /etc/saslauthd.conf
           ├─2477 /usr/sbin/saslauthd -m /var/run/saslauthd -a ldap -O /etc/saslauthd.conf
           ├─2478 /usr/sbin/saslauthd -m /var/run/saslauthd -a ldap -O /etc/saslauthd.conf
           └─2479 /usr/sbin/saslauthd -m /var/run/saslauthd -a ldap -O /etc/saslauthd.conf

May 09 09:31:52 TEST saslauthd[2475]: detach_tty      : master pid is: 2475
May 09 09:31:52 TEST saslauthd[2475]: ipc_init        : listening on socket: /var/run/saslauthd/mux

# testsaslauthd -u chio -p P@ssw0rd
0: OK "Success."
# testsaslauthd -u Administrator -p P@ssw0rd
0: OK "Success."