Warning: Can't synchronize with the repository (Unsupported version control system "svn": "Shared object "libapr-1.so.3" not found, required by "_fs.so"" ). Look in the Trac log for more information.

mm not a howto yes just raw dumps

read the handbook

in /etc/rc.conf 

kerberos5_server_enable="YES"
kadmind5_server_enable="YES"

/etc/krb5.conf 

[libdefaults]
    default_realm = EXAMPLE.COM

[realms]
     EXAMPLE.COM = {
        kdc = box.example.com
        admin_server =  box.example.com 
    }

[domain_realm]
    .example.com = EXAMPLE.COM

init kerberos 

#kstash
#kadmin -l
>? (for help)  
>init EXAMPLE.COM
>q

create host/services keytabs and a user 

#kadmin -l 
>add --random-key host/box.example.com
>ext  host/box.example.com
>add --random-key ldap/box.example.com
>ext  ldap/box.example.com
>add -pw 1234 test_user 
>q

check your keytab file 

#ktutil -k /etc/krb5.keytab list
  1  des-cbc-crc    ldap/box.example.com@EXAMPLE.COM
  1  des-cbc-md4    ldap/box.example.com@EXAMPLE.COM
  1  des-cbc-md5    ldap/box.example.com@EXAMPLE.COM
  1  des3-cbc-sha1  ldap/box.example.com@EXAMPLE.COM
  1  des-cbc-crc    host/box.example.com@EXAMPLE.COM
  1  des-cbc-md4    host/box.example.com@EXAMPLE.COM
  1  des-cbc-md5    host/box.example.com@EXAMPLE.COM
  1  des3-cbc-sha1  host/box.example.com@EXAMPLE.COM

(re)start services 

#/etc/rc.d/kerberos restart

test test_user 

#kinit test_user

check yout ticket 

#klist

remove your ticket 

#kdestroy

install sasl 

#cd /usr/ports/security/cyrus-sasl2-saslauthd
# make install clean

test setup

screen 1 service in debugmode 

#saslauthd -a kerberos5 -d

screen 2 test with sasl testclient 

#testsaslauthd -u test_user -p 1234 -r EXAMPLE.COM -s ldap

if this works enable saslauthd in /etc/rc.conf 

saslauthd_enable="YES"

start as daemon 

#/usr/local/etc/rc.d/saslauthd start

debugging

install strace 

#cd /usr/ports/devel/strace
#make install clean

usage strace 

# mount -t procfs proc /proc
# strace saslauthd -a kerberos5 -d -n0