Usage Note 42185: SASĀ® host-based authentication fails when authenticating against OpenLDAP Linux client versions later than 2.2 when setting METHODS=LDAP
 |  |  |  |
The SAS host authentication server fails to authenticate when METHODS=LDAP is specified and the Linux OpenLDAP client is a release later than 2.2.
A message similar to the following is written to the sasauth debug log:
20110125-12:57:28 Loading method ldap from /TECH/GOLDEN/RC/LAX.V9.2.T2.M2.024601/SASFoundation/9.2/utilities/bin/authldap.so 20110125-12:57:28 Could not load authentication method /TECH/GOLDEN/RC/LAX.V9.2.T2.M2.024601/SASFoundation/9.2/utilities/bin/authlda p.so. Reason: libldap-2.2.so.7: cannot open shared object file: No such file or directory
The SASFoundation/9.2/utilities/bin/authldap.so module attempts to load the libldap-2.2.so.7 library. The libldap-2.2.so.7 library is a version 2.2 library and it does not exist in later versions of the OpenLDAP client.
To circumvent the problem, create a symbolic link for /usr/lib64/libldap-2.2.so.7, pointing to the appropriate LDAP library. For example:
ln -s libldap-2.3.so.0.2.31 libldap-2.2.so.7
When the authldap.so library is built, the -lldap option is used, and it appears that the Linux linker is appending the version of the library based on which version of the client is installed used in the linking phase.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | Base SAS | Linux | 9.21_M2 | 9.2 TS2M2 | ||
| Linux for x64 | 9.21_M2 | 9.2 TS2M2 | ||||
| Type: | Usage Note |
| Priority: |
| Date Modified: | 2013-12-12 19:11:33 |
| Date Created: | 2011-01-25 12:51:08 |