Hi,I would like to authenticate users using LDAP directory server (only through TLS connection) to access a web url http://host.domain.com/test.
I have placed a .htaccess file in the webroot/test directory. This file contains
AuthType Basic AuthName "Password Required" AuthLDAPURL ldap://host.domain.com:389/dc=domain,dc=com?uid require user testIn plain mode (setted the LDAP server side to support plain authentication) authentication, I got authenticated and it is showing the webpage.
In TLS mode (setted the LDAP server side to support only TLS authentication) authentication, I am not getting authenticated. It looks the apache server is not initialising the tls connection. Can somebody tell me what should I enable?
The apache error.log is showing as below, -----------------------------------------------------------------------------------------------------------------------------------------------------------[Thu Jan 12 17:39:13 2006] [debug] mod_auth_ldap.c(337): [client 192.168.0.2] [11233] auth_ldap authenticate: using URL ldap://host.domain.com:389/dc=domain,dc=com?uid [Thu Jan 12 17:39:13 2006] [warn] [client 192.168.0.2] [11233] auth_ldap authenticate: user test authentication failed; URI /test/ [ldap_search_ext_s() for user failed][Confidentiality required]
-----------------------------------------------------------------------------------------------------------------------------------------------------------Note: The command " *ldapsearch -h host.domain.com -Z -b "dc=domain,dc=com"*" is giving the entries of the LDAP server successfully. It means the TLS option is working with the server.
The Version details are, OS : Gentoo Apache : 2.0.55 mod_auth_ldap : 3.3 (This has installed the mod_ldap module) If somebody helps me would be grateful to you. Thanks & Regards, Muthu.
--------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx