httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From west alto <westa...@gmail.com>
Subject [users@httpd] mod_ldap not caching
Date Wed, 07 Jul 2010 12:56:52 GMT
Hi Gurus,

I have a subversion server that authenticates with windows ad and i
want to cache my authentication for better performance.

here's my setting:

LoadModule authnz_ldap_module
/usr/lib/apache2-prefork/mod_authnz_ldap.so
LoadModule ldap_module                    /usr/lib/apache2-prefork/mod_ldap.so

LDAPTrustedMode SSL
LDAPVerifyServerCert off
LDAPSharedCacheSize 500000
LDAPCacheEntries 1024
LDAPCacheTTL 43200
LDAPOpCacheEntries 1024
LDAPOpCacheTTL 43200
LDAPSharedCacheFile /srv/home/svn/ldap_cache
LDAPConnectionTimeout 10

<Location /ldap-status>
        SetHandler ldap-status
        Order allow,deny
        Allow from all
</Location>

    LDAPTrustedClientCert CERT_BASE64 /etc/apache2/ssl.crt/ad1.cer
    LDAPTrustedClientCert CERT_BASE64 /etc/apache2/ssl.crt/ad2.cer

    <Location /unix-repo>
        DAV svn
        SVNPath /srv/svn/unix-repo

        AuthName "Please use your ACTIVE DIRECTORY for Authentication"
        AuthType Basic
        AuthBasicProvider ldap
        AuthzLDAPAuthoritative off
        Include /etc/apache2/.ldapbinddn
        AuthLDAPURL "ldaps://172.23.12.137
172.23.12.136:636/DC=domain,DC=local?sAMAccountName?sub?(objectClass=user)"

        SSLRequireSSL
        AuthzSVNAccessFile /srv/config/svn_acl/unix-repo
        Require valid-user
        SVNPathAuthz off
    </Location>


Browsing https://localhost/ldap-status show an empty LDAP Cache Information

Can anyone help me, what's missing?

Thanks,


West

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message