httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Long <DL...@Lynden.com>
Subject [users@httpd] how to use ldap authentication
Date Mon, 03 Jan 2011 18:50:54 GMT
I am trying to use httpd 2.2.17 with ldap authentication but get "ldap initialization failed"
message
Here is my configuration
I downloaded apr 1.4.2 and apr-util 1.3.10

For apr 1.4.2, I did "configure --prefix=/www/apache2/apr-httpd/"

For apr util 1.3.10, I did "configure --prefix=/www/apache2/apr-util-httpd/ --with-apr=/www/apache2/apr-httpd/
--with-ldap"

For httpd-2.2.17
configure --enable-ldap --enable-authnz-ldap


All compiled and installed fine. In httpd.conf file I have following for my ldap authentication
restricted folder.

AuthName "Staff Only"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL ldap://ldap.lynden.com:389/ou=people,dc=lynden,dc=com?uid?sub?(objectClass=organizationalPerson)
AuthzLDAPAuthoritative off
require valid-user


I can started httpd. But when I hit restricted folder. I still got error.

Here is my error_log, parser fine but ldap initialization failed. How do I test my apache
ldap function? Or do I need to recompile my apr-util?

[Wed Dec 29 15:37:12 2010] [debug] mod_authnz_ldap.c(1010): [293] 
auth_ldap url parse: 
`ldap://128.1.10.243:389/ou=people,dc=lynden,dc=com?uid?sub?(objectCla
ss=organizationalPerson)', Host: 128.1.10.243:389, Port: 389, DN: 
ou=people,dc=lynden,dc=com, attrib: uid, scope: subtree, filter: 
 (objectClass=organizationalPerson), connection mode: not using SSL 
 [Wed Dec 29 15:37:12 2010] [debug] mod_authnz_ldap.c(403): [client 
12.171.37.10] [293] auth_ldap authenticate: using URL 
ldap://128.1.10.243:389/ou=people,dc=lynden,dc=com?uid?sub?(objectClas
s=organizationalPerson) [Wed Dec 29 15:37:12 2010] [info] [client 
12.171.37.10] [293] auth_ldap authenticate: user dlong authentication 
failed; URI /EMU [LDAP: ldap initialization failed][Unknown error]

Can someone help?

Thanks in advance.

David Long

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message