We use Apple Open Directory (which is openLDAP actually), and we are experiencing a problem that for some users, user authentication fails with ldap_bind: Insufficient access (50)
.
Attempting to rekerberize, as recommended on https://support.apple.com/en-us/HT200018
$ sudo mkdir /var/db/openldap/migration/
$ sudo touch /var/db/openldap/migration/.rekerberize
$ sudo slapconfig -firstboot
However, the last command returns
2022-01-03 10:57:11 +0000 slapconfig -firstboot
2022-01-03 10:57:11 +0000 Stopping LDAP server (slapd)
2022-01-03 10:57:12 +0000 Starting LDAP server (slapd)
2022-01-03 10:57:12 +0000 slapd started
2022-01-03 10:57:12 +0000 Rekerberizing users
2022-01-03 10:57:12 +0000 Could not retrieve auth record (3622f4c8-e3be-11e6-8dbd-a860b621b321): 0
and I have no idea how to track down this problem, let alone how to fix it.