I use something like this in a file under /etc/httpd/conf.d
I suggest you to try first without SSL and once it works, then enable SSL.
Alias /intranet "/intranet/web"
<Directory "/intranet/web">
Options Indexes SymLinksIfOwnerMatch
AllowOverride None
Order allow,deny
Allow from localhost 127.0.0.1 redhat.com.py 192.168.0
AuthType basic
AuthName Intranet
AuthBasicProvider ldap
AuthzLDAPAuthoritative off
AuthLDAPURL
ldaps://fds1.redhat.com.py/ou=People,dc=redhat,dc=com,dc=py?uid?sub
require valid-user
</Directory>
Para
fedora-directory-users at redhat.co
m
"Marco Strullato" cc
<marco.strullato at gmail.c
om> Asunto
Enviado por: fedora
fedora-directory-users-b directory server and ldap
ounces at redhat.com authentication for httpd 2.2.x
Clasificaci?n
17/03/2008 12:41 p.m. Uso Interno
Por favor, responda a
"General discussion list
for the Fedora Directory
server project."
<fedora-directory-users@
redhat.com>
Hi all,
I already have two fedora directory servers set up in multi master replica
and tls used for linux authentication.
Now I have to connect my fds authentication system to the apache web server
(httpd 2.2.x). Web traffic btw browser and httpd server will be encrypted
with mod_ssl.
I added to httpd.conf the following lines
LDAPTrustedGlobalCert CA_BASE64 /etc/openldap/cacerts/cacert.pem
LDAPTrustedMode TLS
and I create a .htaccess file with this content:
AuthType Basic
AuthName "Restricted Access"
AuthLDAPURL ldap://server/c=it?uid?one TLS
AuthzLDAPAuthoritative On
AuthLDAPEnabled On
AuthLDAPBindDN "cn=Directory Manager"
AuthLDAPBindPassword "password"
Unluckly I can not authenticate and I get
[Mon Mar 17 15:45:33 2008] [error] [client 10.0.1.13] access to /4.4
failed, reason: verification of user id 'user' not configured
Suggestions?
Tnks
Marco Strullato--
Fedora-directory-users mailing list
Fedora-directory-users at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
========================================================================================
AVISO LEGAL: Esta informaci?n es privada y confidencial y est? dirigida
?nicamente a su destinatario. Si usted no es el destinatario original de
este mensaje y por este medio pudo acceder a dicha informaci?n por favor
elimine el mensaje. La distribuci?n o copia de este mensaje est?
estrictamente prohibida. Esta comunicaci?n es s?lo para prop?sitos de
informaci?n y no debe ser considerada como propuesta, aceptaci?n ni como
una declaraci?n de voluntad oficial de NUCLEO S.A. La transmisi?n de
e-mails no garantiza que el correo electr?nico sea seguro o libre de error.
Por consiguiente, no manifestamos que esta informaci?n sea completa o
precisa. Toda informaci?n est? sujeta a alterarse sin previo aviso.
This information is private and confidential and intended for the
recipient only. If you are not the intended recipient of this message you
are hereby notified that any review, dissemination, distribution or
copying of this message is strictly prohibited. This communication is for
information purposes only and shall not be regarded neither as a proposal,
acceptance nor as a statement of will or official statement from NUCLEO
S.A. . Email transmission cannot be guaranteed to be secure or error-free.
Therefore, we do not represent that this information is complete or
accurate and it should not be relied upon as such. All information is
subject to change without notice.
