httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sascha Kersken">
Subject Re: [users@httpd] Apache2.2.4 - LDAP
Date Mon, 23 Apr 2007 21:58:32 GMT
Hi again,

> Hey Thanks - that totally got me to my hopefully last problem - Any idea
> on the below ?

[Mon Apr 23 14:45:21 2007] [warn] [client] [2124] auth_ldap
authenticate: user XXXXX\\VTLU authentication failed; URI / [LDAP:
ldap_simple_bind_s() failed][Invalid Credentials]
[Mon Apr 23 14:45:21 2007] [error] [client] user XXXXX\\VTLU:
authentication failure for "/": Password Mismatch

To authenticate the request to the LDAP server, you need an AuthLDAPBindDN 
directive like
AuthLDAPBindDN "cn=ldap-user, dc=testnet, dc=local"

The AuthLDAPRemoteUserAttribute directive you used merely sets the 
REMOTE_USER environment variable but doesn't specify the user for the LDAP 


-----Original Message-----
From: Sascha Kersken []
Sent: Monday, April 23, 2007 2:00 PM
Subject: Re: [users@httpd] Apache2.2.4 - LDAP


> [Mon Apr 23 13:37:34 2007] [notice] Child 3880: Starting thread to
> on port 7070.
> [Mon Apr 23 13:37:40 2007] [error] Internal error: pcfg_openfile()
> with NULL filename
> [Mon Apr 23 13:37:40 2007] [error] [client] (9)Bad file
> descriptor: Could not open password file: (null)

> Could it be the AuthName ? I have it set to my user id

No, auth name is the realm; i.e. the authentication context (provided
the login box by the browser).

> <Directory />
>             Order allow,deny
>             Allow from all
>             AuthType Basic
>             AuthName vtlu
>             AuthzLDAPAuthoritative on
>             AuthLDAPUrl ldap://
>             AuthLDAPRemoteUserAttribute vtlu
>             AuthLDAPBindPassword xxxxxx
>             require valid-user
> </Directory>

With Apache 2.2, you need to add the line
  AuthBasicProvider ldap
If you don't, Apache presumes the file provider and looks for an
AuthUserFile directive which you don't provide here (because you want
That's the reason for the "NULL filename" error message.


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message