Re: [users@httpd] <resolved> Apache 2.2 and Active Directory

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello *,
I finally got a working configuration for Apache 2.2.0 the authenticate against an MS Active Directory Server via mod_authnz_ldap 


Important is the directive:          AuthzLDAPAuthoritative off


....


--------------------- snip ---------------------------------
LDAPSharedCacheSize 102400
        LDAPCacheEntries 1024
        LDAPCacheTTL 600
        LDAPOpCacheEntries 1024
        LDAPOpCacheTTL 600

        # LDAPTrustedGlobalCert CA_BASE64 <pfad auf CA file>
        # LDAPTrustedMode SSL
        # LDAPVerifyServerCert Off # mit On gehts bei mir nicht

  <Location /otrs>


        ErrorDocument 403 /otrs/index.pl
        SetHandler  perl-script
        PerlResponseHandler ModPerl::Registry
        Options +ExecCGI
        PerlOptions +ParseHeaders
        PerlOptions +SetupEnv
AuthLDAPBindDN CN=LDAP,OU=Unix,OU=Admins,OU=Workers,DC=ads,DC=mydomain,DC=com 
         AuthLDAPBindPassword  viewonly
AuthLDAPURL ldap://10.1.1.14/ OU=Workers,DC=ads,DC=mydomain,DC=com?sAMAccountName?sub? (objectClass=person) 
         AuthBasicProvider ldap
         AuthzLDAPAuthoritative off
         AuthType Basic
         AuthName "Please authenticate"
# Require ldap-group OU=Admins,OU=Workers,DC=ads,DC=mydomain,DC=com 
         # Require ldap-user
         Require valid-user

  </Location>


---------------------- snap --------------------------------------


kind regards

Falko

Am 24.04.2006 um 14:32 schrieb Falko Zurell:


Hi *,

here again my question:
Has anyone successfully configured Apache 2.2 to authenticate against a MS Active Directory Server (via mod_authnz_ldap)? 


Please give a note to me.

Thanks!


---
F a l k o  Z u r e l l
-----------------------------------------------------
mail: mailto:falko@xxxxxxxxx
web: http://www.zurell.de
 gpg: http://www.zurell.de/falko.zurell-gpg-key.asc
blog: http://www.explain-it.org/wordpress/
   icq: 327004879



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project. 
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



---
F a l k o  Z u r e l l
-----------------------------------------------------
mail: mailto:falko@xxxxxxxxx
web: http://www.zurell.de
 gpg: http://www.zurell.de/falko.zurell-gpg-key.asc
blog: http://www.explain-it.org/wordpress/
   icq: 327004879



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux