ldap server does not offer SASL/EXTERNAL mechanism

Solution Unverified - Updated -


  • OpenLDAP server returns the following error when trying to use slapi interface to connect to ldap server using EXTERNAL mechanism. Tried to find the mechanisms available lists only GSSAPI.
# ldapsearch -Y EXTERNAL -b "" -s base -H ldapi:/// supportedsaslmechanisms
SASL/EXTERNAL authentication started
ldap_sasl_interactive_bind_s: Authentication method not supported (7)
        additional info: SASL(-4): no mechanism available: security flags do not match required
# ldapsearch -x -H ldapi:/// -b "" -LLL -s base supportedSASLMechanisms
supportedSASLMechanisms: GSSAPI


  • Red Hat Enterprise Linux (All Versions)
  • OpenLDAP 2.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In