httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ed Avis <...@waniasset.com>
Subject [users@httpd] Re: Confused about LDAP authentication with Active Directory
Date Fri, 27 Feb 2009 17:24:36 GMT
André Warnier <aw <at> ice-sa.com> writes:

>Now, to the OP : since you can do that with Perl, won't you consider 
>writing your own Apache/mod_perl LDAP authentication module, where you 
>can do exactly the same as you did in your test program ?

Yes that thought crossed my mind.  There are four ways I can think of to get it
working:

1.  Use the standard Apache LDAP modules.  Actually this might be more than one
way, because there are lots of different combinations of mod_auth_ldap,
mod_authz_ldap, mod_authnz_ldap and perhaps others... here I am using the last
of these.

2.  Patch the Apache code to authenticate against Active Directory in a more
straightforward way, that is, just bind with the username and password given by
the user, and if it works then authentication succeeds.

3.  Use Kerberos.

4.  Write a custom handler in Perl.

I'm still on (1) at the moment because there are so many tantalizing
half-complete howto instructions on the web, I'm convinced that somebody
somewhere has been able to make it work.

-- 
Ed Avis <eda@waniasset.com>



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message