> If the initial bind is working then it's probably your LDAP search > criteria which depends on how your AD is layed out. > > This is what I use (I use the AD global catalog (GC)): > > > AuthLDAPURL > "ldap://ad.nos.com:3268/OU=Accounts,DC=nos,DC=com?sAMAccountName?sub?(ob jectClass=*)" > > You probably also need: > > AuthzLDAPAuthoritative Off Turning AuthzLDAPAuthoritative off worked. It was in the configuration before (I just upgraded from 2.0), so I should have known it's supposed to do something! Thanks, Dan --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|