My setup is doing the same. Valid user valid pass allows access. Invalid user denies as expected and gives this in the error_log: [Fri Jun 02 10:13:28 2006] [warn] [client x.x.x.x] [845] auth_ldap authenticate: user bill authentication failed; URI /test [User not found][No such object] [Fri Jun 02 10:13:28 2006] [error] [client x.x.x.x] user bill not found: /test Valid user but invalid password gives a 500 internal server error and this in the error_log: [Fri Jun 02 10:20:45 2006] [warn] [client x.x.x.x] [847] auth_ldap authenticate: user kckepple authentication failed; URI /test [ldap_simple_bind_s() to check user credentials failed][Invalid credentials] You only get one chance to get your password right is the end effect of all this. Bug? Misconfig? httdp.conf: ... <Directory "/usr/local/apache-2.2.2/htdocs/test"> AllowOverride None Options None AuthType Basic AuthName "Please Login" AuthBasicProvider ldap AuthLDAPURL "ldap://luminis.valdosta.edu:389/ou=People,o=valdosta.edu,o=cp AuthLDAPBindDN "uid=kckepple,ou=People,o=valdosta.edu,o=cp" AuthLDAPBindPassword "*******" AuthzLDAPAuthoritative On require valid-user </Directory> ... --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx