Hi Dmitriy, I've been trying to get this to work for 4 weeks now without any success. I highly suspect that just relying on the configure script to do the right thing doesn't work as I've inspected a few different Linux distributions and all of them have had the same log output (e.g. "LDAP: SSL support unavailable"). I personally have been trying to make configure detect and build it to no avail. I'm about to dig into the code to get this worked out and so I'd appreciate anyone's opinion who has knowledge in this area. Cheers, Craig > -----Original Message----- > From: Dmitriy Kirhlarov [mailto:dkirhlarov@xxxxxxxxxxxx] > Sent: Friday, September 16, 2005 6:15 AM > To: users@xxxxxxxxxxxxxxxx > Subject: [users@httpd] ldaps auth > > Hi, list > > I need use ldap authentication over ssl > I have in my httpd.conf > LDAPSHaredCacheSize 20000 > LDAPCacheEntries 1024 > LDAPCacheTTL 600 > LDAPOpCacheEntries 1024 > LDAPOpCacheTTL 600 > LDAPTrustedCA /usr/local/etc/ssl/cacert.pem > LDAPTrustedCAType BASE64_FILE > > > and in the .htaccess > AuthType basic > AuthName "test" > AuthLDAPEnabled on > AuthLDAPURL > ldaps://free2.mow.oilspace.com/ou=users,o=oilspace?uid?one?(Ob > jectClass=posixAccount) > AuthLDAPAuthoritative off > require valid-user > > I know what my cacert file correct and name of ldap server > identical in URI and certificate. > > But I get in http-error.log > LDAP: SSL support unavailable > > and, after that, apache connected to ldap without encryption. > > Any ideas? > > My system: > $ uname -rs && pkg_info -Ix apache > FreeBSD 5.4-STABLE > apache-2.0.54_4 Version 2 of Apache web server with prefork MPM. > > WBR > -- > Dmitriy Kirhlarov > OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 > Moscow, Russia > P:+7 095 105 7247 F:+7 095 105 7246 > E:DmitriyKirhlarov@xxxxxxxxxxxx OILspace - The resource > enriched - www.oilspace.com > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP > Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|