Setting up Heimdal Kerberos with LDAP backend i faced a weird problem. In kadmin i got following errors:
- opening database: ldap_sasl_bind_s: Can't contact LDAP server
- kadm5_get_principals: Wrong database version
Slapd was running and KDC had all permissions though. Despite such attempts, there were no activity in slapd logs.
The problem was simple: whereas slapd creates its socket as /var/run/slapd/ldapi, Kerberos(/libldap?) tries to open it as /var/run/ldapi. So ln -s /var/run/slapd/ldapi /var/run/ldapi has solved the problem.
