Re: [libvirt-users] acceptable SASL mechanisms/can libvirt authenticate against PAM
On Wednesday 2011-12-14, Dave Allan wrote:
I was playing with SASL authentication a bit today and I wasn't
able
to get libvirt to authenticate against PAM (or anything else except
the sasldb, although I didn't try Kerberos). Does anybody know off
the top of their head what mechanisms/password check options work?
I'm trying to figure out if I'm attempting the impossible.
Dave
Hi Dave,
Here is my working configuration with sql backend. I am using postgres.
mech_list: digest-md5
pwcheck_method: auxprop
auxprop_plugin: sql
sql_engine: pgsql
sql_hostnames: localhost
sql_user: qemukvm
sql_passwd: secret
sql_database: qemukvmdb
sql_select: select password from qemuusers where username = '%u'
To make use of PAM as far as I know you will have to use saslauthd method.
And here is the list of relevant sasl options (I am not sure if it's up to
date): http://asyd.net/docs/cyrus-options.html
--
Josip Deanovic