httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marc Jonkers" <MarcJonk...@zorggroepmeander.nl>
Subject RE: [users@httpd] LDAPS authentication APACHE2 with W2K Domain anyone?[Scanned]
Date Thu, 10 Nov 2005 15:05:54 GMT
I get this message in the log:
 
 
[Thu Nov 10 15:36:32 2005] [debug]
/home/adconrad/apache2/apache2-2.0.54/build-tree/apache2/modules/experim
ental/mod_auth_ldap.c(337): [client 10.10.20.118] [29423] auth_ldap
authenticate: using URL
ldaps://10.10.20.51/dc=xxx,dc=xxxxx,dc=xxx?sAMAccountName?sub?(objectcla
ss=person)
[Thu Nov 10 15:36:32 2005] [warn] [client 10.10.20.118] [29423]
auth_ldap authenticate: user jonkm authentication failed; URI
/cgi-bin/smokeping.cgi [LDAP: ldap_simple_bind_s() failed][Can't contact
LDAP server]
 
I use a W2K certificate
 
 
 
Apache2 conf:

LDAPSharedCacheSize 200000
LDAPCacheEntries 1024
LDAPCacheTTL 600
LDAPOpCacheEntries 1024
LDAPOpCacheTTL 600
LDAPTrustedCA /etc/ssl/certs/ca.xxxxxxxxxxxx.cer
LDAPTrustedCAType BASE64_FILE

 
 
On the site conf:
 
AllowOverride None
                Options ExecCGI -MultiViews +SymLinksIfOwnerMatch
                Order allow,deny
                Allow from all
                AuthType Basic
                AuthLDAPAuthoritative on
                AuthLDAPBindDN xxxxxx
                AuthLDAPBindPassword xxxxxx
                AuthLDAPURL
ldaps://10.10.20.51/dc=xxx,dc=xxxxxxx,dc=xx?sAMAccountName?sub?(objectcl
ass=person
<ldaps://10.10.20.51/dc=xxx,dc=xxxxxxx,dc=xx?sAMAccountName?sub?(objectc
lass=person> )
                require valid-user

I use Debian.
What's wrong?
 
 
thx,
 
Marc


________________________________

Van: Marc Jonkers [mailto:MarcJonkers@zorggroepmeander.nl] 
Verzonden: donderdag 10 november 2005 15:11
Aan: users@httpd.apache.org
Onderwerp: [users@httpd] LDAPS authentication APACHE2 with W2K Domain
anyone?[Scanned]


Hi,
 
I want to authenticate users agains W2K domain with LDAPS in Apache2.
Has anyone running this? 
I cannot get it working.
 
 
thx,
 
Marc

Mime
View raw message