Details
-
Improvement
-
Resolution: Unresolved
-
Major - P3
-
None
-
None
-
None
-
(copied to CRM)
Description
See spec change here. To test, get ldaptest.10gen.cc's IP address. Assuming that $AUTH_HOST has been set to "ldaptest.10gen.cc" via Evergreen project configuration:
case "$OS" in
|
cygwin*)
|
IP_ADDR=`getent hosts $AUTH_HOST | head -n 1 | awk '{print $1}'`
|
;;
|
|
|
darwin)
|
IP_ADDR=`dig $AUTH_HOST +short | tail -1`
|
;;
|
|
|
*)
|
IP_ADDR=`getent hosts $AUTH_HOST | head -n 1 | awk '{print $1}'`
|
esac
|
Then ensure you can authenticate to ldaptest even with the IP address instead of the hostname in the URI. In the libmongoc Evergreen script, the URI is formatted like:
mongodb://${AUTH_GSSAPI}@${IP_ADDR}/?authMechanism=GSSAPI&authMechanismProperties=CANONICALIZE_HOST_NAME:true"
|
Ensure you can do a "ping" command or something else that proves you authenticated.
Attachments
Issue Links
- depends on
-
NODE-1370 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
GODRIVER-283 Update algorithm for Kerberos hostname canonicalization
-
- Backlog
-
-
CSHARP-2216 Update algorithm for Kerberos hostname canonicalization
-
- Backlog
-
-
CDRIVER-2551 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
CXX-1529 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
JAVA-2812 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
MOTOR-208 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
PHPC-1139 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
PYTHON-1505 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-
-
RUBY-1316 Update algorithm for Kerberos hostname canonicalization
-
- Closed
-