在openLDAP centos上的测试是第一次工作，但在那之后失败了。

Question

只有在我编辑了文件/etc/saslauthd.conf并重新启动openLDAP之后，testsaslauthd才能第一次工作，当我第二次运行它时，它显示身份验证失败。当我重新编辑文件并重新启动openLDAP时，它将重复如下所示的结果。

#testsaslauthd -u testuser -p testPassword
0: OK "Success."
# testsaslauthd -u testuser -p testPassword
0: NO "authentication failed"

我的配置如下

/etc/saslauthd.conf

ldap_servers: ldap://10.10.88.103
ldap_search_base: cn=users,dc=ldapcentos,dc=com
ldap_filter: (uid=%u)

/etc/sysconfig/saslauthd

# Directory in which to place saslauthd's listening socket, pid file, and so
# on.  This directory must already exist.
SOCKETDIR=/var/run/saslauthd

# Mechanism to use when checking passwords.  Run "saslauthd -v" to get a list
# of which mechanism your installation was compiled with the ablity to use.    
MECH=ldap

# Options sent to the saslauthd. If the MECH is other than "pam" uncomment the next line.
DAEMONOPTS=--user saslauth

# Additional flags to pass to saslauthd on the command line.  See saslauthd(8)
# for the list of accepted flags.
FLAGS="-O /etc/saslauthd.conf"

Answer 1

我发现了这个问题

DAEMONOPTS=--user saslauth ===> DAEMONOPTS="--user saslauth"

还需要确保/var/run/saslauthd是可访问的。