Maybe you didn't compile apache with ssl support ?
-----Original Message-----
From: Marc Jonkers [mailto:MarcJonkers@xxxxxxxxxxxxxxxxxxx]
Sent: Friday, September 16, 2005 1:19 PM
To: users@xxxxxxxxxxxxxxxx
Subject: RE: [users@httpd] ldaps auth[Scanned]
Same problem here.
Thnx,
Marc
-----Oorspronkelijk bericht-----
Van: Dmitriy Kirhlarov [mailto:dkirhlarov@xxxxxxxxxxxx]
Verzonden: vrijdag 16 september 2005 13:15
Aan: users@xxxxxxxxxxxxxxxx
Onderwerp: [users@httpd] ldaps auth[Scanned]
Hi, list
I need use ldap authentication over ssl
I have in my httpd.conf
LDAPSHaredCacheSize 20000
LDAPCacheEntries 1024
LDAPCacheTTL 600
LDAPOpCacheEntries 1024
LDAPOpCacheTTL 600
LDAPTrustedCA /usr/local/etc/ssl/cacert.pem
LDAPTrustedCAType BASE64_FILE
and in the .htaccess
AuthType basic
AuthName "test"
AuthLDAPEnabled on
AuthLDAPURL
ldaps://free2.mow.oilspace.com/ou=users,o=oilspace?uid?one?(ObjectClass=
posixAccount)
AuthLDAPAuthoritative off
require valid-user
I know what my cacert file correct and name of ldap server identical in
URI and certificate.
But I get in http-error.log
LDAP: SSL support unavailable
and, after that, apache connected to ldap without encryption.
Any ideas?
My system:
$ uname -rs && pkg_info -Ix apache
FreeBSD 5.4-STABLE
apache-2.0.54_4 Version 2 of Apache web server with prefork MPM.
WBR
--
Dmitriy Kirhlarov
OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 Moscow,
Russia P:+7 095 105 7247 F:+7 095 105 7246
E:DmitriyKirhlarov@xxxxxxxxxxxx OILspace - The resource enriched -
www.oilspace.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project. See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project. See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
===========================================================
De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is alleen bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. Hoewel Orange maatregelen heeft genomen om virussen in deze email of attachments te voorkomen, dient u ook zelf na te gaan of virussen aanwezig zijn aangezien Orange niet aansprakelijk is voor computervirussen die veroorzaakt zijn door deze email.
The information contained in this message may be confidential and is intended to be only for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. Although Orange has taken steps to ensure that this email and attachments are free from any virus, you do need to verify the possibility of their existence as Orange can take no responsibility for any computer virus which might be transferred by way of this email.
===========================================================
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|