Re: mod_authz_ldap - Authenticating users in Apache

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Tom,

Thanks for mailing. Please find the code I do have for LDAP authentication in apache2.0.64, 

<Directory /var/www/html>
   AuthType Basic
   AuthName "Stooges Web Site: Login with email address"
   AuthLDAPEnabled on
   AuthLDAPURL ldaps://ldap.your-domain.com:636/o=stooges?mail
   AuthLDAPBindDN "cn=StoogeAdmin,o=stooges"
   AuthLDAPBindPassword secret1
   require valid-user
</Directory>

but I am failing to have additional features listed below to authentication like, 
-Search and Bind a user in LDAP by passing Group ID who can authorise any specific user belongs to the group
-Redirecting the request if any user directly access url in application (if we can stop in this level)
-Have a proper html login page to accept user name and password rather having simple windows dialog box.



I thought to have the latest version to over come these problems, so I am trying to install apache 2.2.21 (stable version). May be I am not trying to install properly as failing to configure ldap module using configure script.
Please give me the right steps or order I should be following to install Apache 2.2.21 successfully with ldap modules.

This is the order I am trying to install apache 2.2.21:
$ httpd2.2.21>apr> buildconf
httpd2.2.21>apr> configure with apr lib
httpd2.2.21>apr>make 
httpd2.2.21>apr>make install

$ httpd2.2.21>apr-util> buildconf


httpd2.2.21>apr-util> configure with apr-util lib


httpd2.2.21>apr-util>make 


httpd2.2.21>aprutil>make install



$ httpd2.2.21> buildconf


httpd2.2.21> configure --prefix =Apache install folder --with-ldap 


httpd2.2.21> make 


httpd2.2.21> make install



Regards,
Muthu




On 17 October 2011 16:48, Thomas Smith <theitsmith@xxxxxxxxx> wrote:
I did this using a <Directory> directive--you can put your LDAP auth stuff there and apply it to the top-level file system directory of your application. Users won't be able to bypass that. (I'm assuming that you're currently using a <Location> directive and that your entire application lives in a single directory structure.)

This will generally work for what you want to do--you didn't provide enough information in your post to provide a response specific to your situation. 

~ Tom
(Sent from my mobile.)

On Oct 17, 2011, at 8:14, Kalimuthu Samayan <ksamayan@xxxxxxxxxxxxxx> wrote:

Hi,

I have used Apache httpd directives to configure the authenticating the users against LDAP database using httpd modules, mod_authz_ldap and mod_ldap. The authentication looks ok, but not able to find any specific directives or way to stop users bypassing web server login and try hitting application URL (application server) directly.

Any help on redirecting to login on web server if any one tries to access the application directly in application server?

--
Regards,
Muthu
Mobile: 0044+(0)782 122 7480



--
Regards,
Muthu
Mobile: 0044+(0)782 122 7480
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux