httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Tymiński Jan <Jan.Tymin...@exorigo-upos.pl>
Subject RE: [users@httpd] Auth aliases problem
Date Wed, 26 Jun 2013 11:00:42 GMT
The problem with unknown auth provider always matches the first provider on the line.
If I reorder them in AuthBasicProvider directive, then another one is reported as unknown.
After longer mess I've put alias literally named "aaa" with empty body, so it is configured
that way:
<AuthnProviderAlias ldap aaa>
</AuthnProviderAlias>
Just to check if it is problem with things inside.
I've also checked if for "file" instead of "ldap" and it neither works.

I'm querying LDAP directly.

Both mods you mention are already loaded.
I load them by a2enmod and also via httpd.conf, just in case.

Pozdrawiam,
Jan TYMIŃSKI.

From: Brandon Gould [mailto:bgould@crewcorpinc.com]
Sent: Wednesday, June 26, 2013 12:28 PM
To: users@httpd.apache.org
Subject: RE: [users@httpd] Auth aliases problem

Ah, my apologies, I misunderstood your original posting.

Now I understand. The mud is clear now!

How are you querying the LDAP servers, directly, or through an intermediary like SASL?

When you configure with aliases, do you get "Unknown auth provider" on both, or just one?

I also see you're using Debian, try this:

A2enmod ldap
A2enmod authnz_ldap

I also wonder if it's a dependency thing; if the necessary mods are being loaded before or,
after, your alias definitions...

Brandon Gould
Reader Sales Crew Member / IT Specialist
CrewCorp Inc.
(613)-449-9854
bgould@crewcorpinc.com<mailto:bgould@crewcorpinc.com>



From: Tymiński Jan [mailto:Jan.Tyminski@exorigo-upos.pl]
Sent: Wednesday, June 26, 2013 3:18 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: RE: [users@httpd] Auth aliases problem

I am able to authenticate to LDAP with no problem.
I am not able to set aliases properly.
LDAP without setting aliases works just on the go, but I have to authenticate to second domain
and that is what I wanted to achieve with aliases.
But apache doesn't recognize aliases set by me.
I'm getting error "Unknown auth provider" for any alias I've set.
I've checked for mistyping errors over 10 times already, and tried even with simply alias
"aaa" to avoid mistyping error.

I'm using apache in version 2.2.16-6+squeeze11 from debian repository.

King Regards,
Jan TYMIŃSKI.

From: Brandon Gould [mailto:bgould@crewcorpinc.com]
Sent: Tuesday, June 25, 2013 9:05 PM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: RE: [users@httpd] Auth aliases problem

You can also try authenticating to PAM, and then in

/etc/pam.d/apache2 (or httpd, I'll have to check)

You specify

Auth                      sufficient             pam_ldap.so
Account               sufficient             pam_ldap.so

Pam_ldap is part of  the nss_ldap package.

This tells PAM to authenticate with LDAP.

On your VirtualHost directive, you'll also need to add:

<Directory /var/www/myrestrictedarea>
AuthType Basic
AuthName "Restricted area for My Server"
AuthPAM_Enabled On
Require group mygroup
</Directory>

This should allow you to authenticate to LDAP.

From: Tymiński Jan [mailto:Jan.Tyminski@exorigo-upos.pl]
Sent: Tuesday, June 25, 2013 9:46 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: [users@httpd] Auth aliases problem

I'd like to ask again about my problem: I want to make aliases for ldap authorization with
mod_authn_alias, I have set everything up correctly, according to the documentation, enabled
required module, set "AuthBasicProvider aaa" in my configuration, and I receive error: "Unknown
Authn provider: aaa" - there is no single line in error.log, there is no information I can
google, as all forward to: "Unknown Authn provider: ldap" and this is not the problem I experience
- there is certainly other basis of the problem.

King Regards,

Jan TYMIŃSKI
IT System Administrator

Exorigo-UPOS Group

tel.: +48 32 44 28 172
mobile.: +48 607 410 656
mailto:jan.tyminski@exorigo-upos.pl


--
Exorigo-Upos sp. z o.o., ul. Kolejowa 5/7, 01-217 Warszawa, NIP 526-26-02-464, REGON 017389996,
KRS: 0000053959.
Rejestracja w Sądzie Rejonowym dla m. st. Warszawy w Warszawie, XII Wydział Gospodarczy
KRS. Kapitał zakładowy 2.045.000 zł.

Mime
View raw message