I posted this bug. I'm using Novell SDK now (with Apache 2.2.2). Runs like oiled... It seems to be related to the Solaris 10 SDK. >>> kckepple@xxxxxxxxxxxx 06/02/06 9:30 pm >>> http://issues.apache.org/bugzilla/show_bug.cgi?id=39529 This bug is the same problem. I patched the file with the code provided and received a LDAP_INSUFFICIENT_RIGHTS not defined error so I simply commented that out. Make, make install and now you get a second chance. Appears to be an issue using a sdk other than openldap. Kyle ----- Original Message ----- From: kckepple@xxxxxxxxxxxx Date: Friday, June 2, 2006 11:26 am Subject: Re: RE: [users@httpd] Authentication Troubles > Solaris 10 supplied. > > Kyle > > ----- Original Message ----- > From: "Fenlason, Josh" <jfenlason@xxxxxxx> > Date: Friday, June 2, 2006 10:41 am > Subject: RE: [users@httpd] Authentication Troubles > > > What ldap sdk did you use? > > , > > Josh. > > > > > -----Original Message----- > > > From: kckepple@xxxxxxxxxxxx [mailto:kckepple@xxxxxxxxxxxx] > > > Sent: Friday, June 02, 2006 9:31 AM > > > To: users@xxxxxxxxxxxxxxxx > > > Subject: [users@httpd] Authentication Troubles > > > > > > My setup is doing the same. Valid user valid pass allows > > > access. Invalid user denies as expected and gives this in the > > > error_log: > > > [Fri Jun 02 10:13:28 2006] [warn] [client x.x.x.x] [845] auth_ldap > > > authenticate: user bill authentication failed; URI /test > > > [User not found][No such object] [Fri Jun 02 10:13:28 2006] > > > [error] [client x.x.x.x] user bill not found: > > > /test > > > > > > Valid user but invalid password gives a 500 internal server > > > error and this in the error_log: [Fri Jun 02 10:20:45 2006] > > > [warn] [client x.x.x.x] [847] auth_ldap authenticate: user > > > kckepple authentication failed; URI /test > > > [ldap_simple_bind_s() to check user credentials > > > failed][Invalid credentials] > > > > > > You only get one chance to get your password right is the end > > > effect of all this. Bug? Misconfig? > > > > > > httdp.conf: > > > ... > > > <Directory "/usr/local/apache-2.2.2/htdocs/test"> > > > AllowOverride None > > > Options None > > > AuthType Basic > > > AuthName "Please Login" > > > AuthBasicProvider ldap > > > AuthLDAPURL > > > "ldap://luminis.valdosta.edu:389/ou=People,o=valdosta.edu,o=cp > > > AuthLDAPBindDN "uid=kckepple,ou=People,o=valdosta.edu,o=cp" > > > AuthLDAPBindPassword "*******" > > > AuthzLDAPAuthoritative On > > > require valid-user > > > > > > </Directory> > > > ... > > > > > > > > > > > > > > > ---------------------------------------------------------------- > -- > > --- > > > The official User-To-User support forum of the Apache HTTP > > > Server Project. > > > See <URL:http://httpd.apache.org/userslist.html> for more info. > > > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > > > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > > > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > > > > > > ------------------------------------------------------------------ > -- > > - > > The official User-To-User support forum of the Apache HTTP Server > > Project.See <URL:http://httpd.apache.org/userslist.html> for more > > info.To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > > > > > -------------------------------------------------------------------- > - > The official User-To-User support forum of the Apache HTTP Server > Project.See <URL:http://httpd.apache.org/userslist.html> for more > info.To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx ------------------------------------------------------------------------- This message is intended for the addressee only and may contain confidential or privileged information. If you are not the intended receiver, any disclosure, copying to any person or any action taken or omitted to be taken in reliance on this e-mail, is prohibited and may be un- lawful. You must therefore delete this e-mail. Internet communications may not be secure or error-free and may contain viruses. They may be subject to possible data corruption, accidental or on purpose. This e-mail is not and should not be construed as an offer or the solicitation of an offer to purchase or subscribe or sell or redeem any investments. ------------------------------------------------------------------------- --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|