httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Craig L. Ching" <cch...@mqsoftware.com>
Subject RE: [users@httpd] ldaps auth
Date Mon, 19 Sep 2005 21:06:21 GMT
Hi Dmitriy,

I've been trying to get this to work for 4 weeks now without any
success.  I highly suspect that just relying on the configure script to
do the right thing doesn't work as I've inspected a few different Linux
distributions and all of them have had the same log output (e.g. "LDAP:
SSL support unavailable").  I personally have been trying to make
configure detect and build it to no avail.  I'm about to dig into the
code to get this worked out and so I'd appreciate anyone's opinion who
has knowledge in this area.

Cheers,
Craig

> -----Original Message-----
> From: Dmitriy Kirhlarov [mailto:dkirhlarov@oilspace.com] 
> Sent: Friday, September 16, 2005 6:15 AM
> To: users@httpd.apache.org
> Subject: [users@httpd] ldaps auth
> 
> Hi, list
> 
> I need use ldap authentication over ssl
> I have in my httpd.conf
>         LDAPSHaredCacheSize 20000
>         LDAPCacheEntries 1024
>         LDAPCacheTTL 600
>         LDAPOpCacheEntries 1024
>         LDAPOpCacheTTL 600
>         LDAPTrustedCA /usr/local/etc/ssl/cacert.pem
>         LDAPTrustedCAType BASE64_FILE
> 
> 
> and in the .htaccess
> AuthType basic
> AuthName "test"
> AuthLDAPEnabled on
> AuthLDAPURL 
> ldaps://free2.mow.oilspace.com/ou=users,o=oilspace?uid?one?(Ob
> jectClass=posixAccount)
> AuthLDAPAuthoritative off
> require valid-user
> 
> I know what my cacert file correct and name of ldap server 
> identical in URI and certificate.
> 
> But I get in http-error.log
> LDAP: SSL support unavailable
> 
> and, after that, apache connected to ldap without encryption.
> 
> Any ideas?
> 
> My system:
> $ uname -rs && pkg_info -Ix apache
> FreeBSD 5.4-STABLE
> apache-2.0.54_4     Version 2 of Apache web server with prefork MPM.
> 
> WBR
> --
> Dmitriy Kirhlarov
> OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 
> Moscow, Russia
> P:+7 095 105 7247 F:+7 095 105 7246 
> E:DmitriyKirhlarov@oilspace.com OILspace - The resource 
> enriched - www.oilspace.com
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message