Return-Path: Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 44449 invoked by uid 500); 10 Jul 2003 00:17:41 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 44389 invoked from network); 10 Jul 2003 00:17:40 -0000 Received: from rdu57-22-234.nc.rr.com (HELO mail.summerseas.com) (66.57.22.234) by daedalus.apache.org with SMTP; 10 Jul 2003 00:17:40 -0000 Received: from summerseas.com (localhost [127.0.0.1]) by mail.summerseas.com (Postfix) with SMTP id F107A6C128 for ; Wed, 9 Jul 2003 20:17:42 -0400 (EDT) Received: from 66.57.22.234 (SquirrelMail authenticated user vic) by www.summerseas.com with HTTP; Wed, 9 Jul 2003 20:17:43 -0400 (EDT) Message-ID: <38014.66.57.22.234.1057796263.squirrel@www.summerseas.com> Date: Wed, 9 Jul 2003 20:17:43 -0400 (EDT) From: To: In-Reply-To: <36EB66DAEBBA8C4E8D9A474CD2EF17C419E908@svits11.main.ad.rit.edu> References: <36EB66DAEBBA8C4E8D9A474CD2EF17C419E908@svits11.main.ad.rit.edu> X-Priority: 3 Importance: Normal X-Mailer: SquirrelMail (version 1.2.11) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Subject: Re: [users@httpd] LDAP authentication using TLS Damian, I'm trying to do something similar except I'm trying to authenticate via SSL. I use the Netscape SDK and OpenSSL. The documentation on apache's site says to get a certificate database from a netscape browser. Just do a find for cert7.db within either .netscape or .mozilla within your home directory. What I found was that you need to set the LDAPTrustedCAType directive to CERT7_DB_PATH but when I do that I get errors in the error_log saying the I have to use BASE64_FILE but when I try that it doesn't work. Please let me know if you make any progress. Thanks, Vic Engle > I am trying to get Apache to do LDAP authentication our campus LDAP > server using TLS. I have it working without TLS but I am confused on how > to make it work with TLS. > > I installed Apache 2.0.46 with mod_ssl , mod_ldap, mod_auth_ldap on a > Sun Server running Solaris 8 I used the OpenLDAP SDK, OpenSSL 0.9.6j, > etc. > > I understand that I need to add the directives: > > LDAPTrustedCA path to cert > LDAPTrustedCAType type > > What is the cert I am supposed to be using? Is this a Verisign Cert or a > Cert from the camous LDAP server, or can I create a cert ? > > Any help would be greatly appreciated. > > Thanks, > > Damian Marinaccio > RIT Library > dxmwml@rit.edu > 585.475.7741 --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org