apache ldap over SSL.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I've install fedora core 5 and try to cofigure httpd 2.2.

without SSL, it's ok with this conf:

LDAPTrustedGlobalCert CA_BASE64 /etc/httpd/conf/cert.pem


<Directory "/var/www/html">

AuthName "bienvenue"
AuthType Basic

AuthBasicProvider ldap
AuthLDAPURL ldap://*.*.*.*/dc=*,dc=*?uid?sub
AuthzLDAPAuthoritative off
require valid-user

</Directory>

Then I just replace ldap for ldaps, and after my first log (I haven't three 
attempt ), I 'm redirected to this page:

Internal Server Error
The server encountered an internal error or misconfiguration and was unable 
to complete your request.

Please contact the server administrator, root at localhost and inform them of 
the time the error occurred, and anything you might have done that may have 
caused the error.

More information about this error may be available in the server error log.


In httpd log I have:  auth_ldap authenticate: user test authentication 
failed; URI / [LDAP: ldap_simple_bind_s() failed][Can't contact LDAP server]

In fedora directory server log : SSL connection from 10.50.7.72 to 
10.50.7.72
[15/Jun/2006:12:18:04 +0200] conn=308 SSL 256-bit AES
[15/Jun/2006:12:18:04 +0200] conn=308 op=-1 fd=68 closed - B1

I have to change an other thing than AuthLDAPURL for SSL???

>From: "Graham Leggett" <minfrin at sharp.fm>
>Reply-To: "General discussion list for the Fedora Directory server 
>project." <fedora-directory-users at redhat.com>
>To: "General discussion list for the Fedora Directory server project." 
><fedora-directory-users at redhat.com>
>CC: fedora-directory-users at redhat.com
>Subject: Re: apache ldap over SSL.
>Date: Mon, 12 Jun 2006 13:28:36 +0200 (SAST)
>
>On Mon, June 12, 2006 12:18 pm, Mickael Besse wrote:
>
> > Httpd v 2.0.53
>
>Use the latest v2.2.x. The LDAP support in v2.0.x was experimental, and a
>lot of rewriting and fixing happened that could not be easily backported
>to v2.0. When v2.2.0 of httpd was finally released a while back, the LDAP
>support was no longer experimental.
>
>The v2.2.x httpd should work with SSL, I spent quite a bit of time trying
>to bend my head around the different LDAP client toolkits to make sure
>their SSL worked consistently for APR.
>
>Regards,
>Graham
>--
>
>
>--
>Fedora-directory-users mailing list
>Fedora-directory-users at redhat.com
>https://www.redhat.com/mailman/listinfo/fedora-directory-users

_________________________________________________________________
Windows Live Mail : d?couvrez et testez la version b?ta ! 
http://www.ideas.live.com/programpage.aspx?versionId=5d21c51a-b161-4314-9b0e-4911fb2b2e6d
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux