RE: [users@httpd] ldaps auth

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Dmitriy,

I've been trying to get this to work for 4 weeks now without any
success.  I highly suspect that just relying on the configure script to
do the right thing doesn't work as I've inspected a few different Linux
distributions and all of them have had the same log output (e.g. "LDAP:
SSL support unavailable").  I personally have been trying to make
configure detect and build it to no avail.  I'm about to dig into the
code to get this worked out and so I'd appreciate anyone's opinion who
has knowledge in this area.

Cheers,
Craig

> -----Original Message-----
> From: Dmitriy Kirhlarov [mailto:dkirhlarov@xxxxxxxxxxxx] 
> Sent: Friday, September 16, 2005 6:15 AM
> To: users@xxxxxxxxxxxxxxxx
> Subject: [users@httpd] ldaps auth
> 
> Hi, list
> 
> I need use ldap authentication over ssl
> I have in my httpd.conf
>         LDAPSHaredCacheSize 20000
>         LDAPCacheEntries 1024
>         LDAPCacheTTL 600
>         LDAPOpCacheEntries 1024
>         LDAPOpCacheTTL 600
>         LDAPTrustedCA /usr/local/etc/ssl/cacert.pem
>         LDAPTrustedCAType BASE64_FILE
> 
> 
> and in the .htaccess
> AuthType basic
> AuthName "test"
> AuthLDAPEnabled on
> AuthLDAPURL 
> ldaps://free2.mow.oilspace.com/ou=users,o=oilspace?uid?one?(Ob
> jectClass=posixAccount)
> AuthLDAPAuthoritative off
> require valid-user
> 
> I know what my cacert file correct and name of ldap server 
> identical in URI and certificate.
> 
> But I get in http-error.log
> LDAP: SSL support unavailable
> 
> and, after that, apache connected to ldap without encryption.
> 
> Any ideas?
> 
> My system:
> $ uname -rs && pkg_info -Ix apache
> FreeBSD 5.4-STABLE
> apache-2.0.54_4     Version 2 of Apache web server with prefork MPM.
> 
> WBR
> --
> Dmitriy Kirhlarov
> OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 
> Moscow, Russia
> P:+7 095 105 7247 F:+7 095 105 7246 
> E:DmitriyKirhlarov@xxxxxxxxxxxx OILspace - The resource 
> enriched - www.oilspace.com
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
>    "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
> For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
> 
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux