enterprise-support team mailing list archive

[Ryan Tandy <question691504@xxxxxxxxxxxxxxxxxxxxx>]

Question #691504 on openldap in Ubuntu changed:
https://answers.launchpad.net/ubuntu/+source/openldap/+question/691504

    Status: Open => Answered

Ryan Tandy proposed the following answer:
On Wed, Jun 24, 2020 at 11:06:08AM -0000, Søren Grønning Iversen wrote:
>Have you tested the 2.5.0-branch of libldap2 for channel binding 
>support against Active Directory with 'LdapEnforceChannelBinding' 
>registry entry to 2 (for always required)?

Not personally, as I don't have access to any Windows servers. I don't 
know who has tested the code other than the person who submitted it.

>Also, would it be fairly easy for me to setup an Ubuntu build 
>environment for the libldap2 libs and tools, so I can perform the 
>testing?

I think right now you'd be better off just building the upstream code, 
ignoring the packaging, and then rebuilding your applications against 
that. The packaging is going to require a LOT of adapting for 2.5, and 
that work hasn't even started yet as 2.5 is still under active 
development.

The upstream git repo includes a GitLab CI job, you can have a look at 
that for build dependencies and commands.

Note you probably also need to build git master of cyrus-sasl (not sure 
if they made a new release yet) and possibly heimdal as well.

Note also that the OpenLDAP 2.5 code is not even at alpha state yet, so 
COMPLETELY UNSUPPORTED at this time.

>The documentation speaks of custom versions of:
>
>        Autoconf 2.13.1
>	Automake 1.4a
>	Libtool 1.4.3

You can ignore this for the 2.5 branch. The latest version of autoconf 
is now supported; automake is not used; and the compatible libtool is 
included in the git repo. The documentation will be updated for the 2.5 
release when we get closer.

Hope this helps.

-- 
You received this question notification because your team Ubuntu
Server/Client Support Team is an answer contact for openldap in Ubuntu.