> > Try this one: > http://wiki.apache.org/httpd/UseLDAPToPasswordProtectAFolder Nice suggestion noodl :) >> AuthType Basic >> AuthzLDAPAuthoritative Off >> AuthBasicProvider ldap >> AuthName "DOMAIN DAV Upload" >> AuthLDAPBindDN "cn=Manager,dc=domain,dc=org" >> AuthLDAPBindPassword "mysecretpassword" >> AuthLDAPURL >> ldap://127.0.0.1:389/ou=DAV,dc=global,dc=domain,dc=org?cn?sub?(objectCla >> ss=person) >> >> Require ldap-user U000001 >> >> >> </Limit> >> </Directory> One thing you can try quickly is below, i.e. add the quotes around the CN you want to require. Require ldap-user "U000001" I don't often restrict based on user accounts, more often based on group membership, allows for extensibility without needing a restart of Apache. If you would rather use groups, here is what I typically use: AuthType Basic AuthName "**AUTH REALM NAME HERE**" AuthBasicProvider ldap AuthzLDAPAuthoritative on AuthLDAPGroupAttributeIsDN off AuthLDAPGroupAttribute memberUid AuthLDAPBindDN cn=ldapusertobindas,dc=example,dc=com AuthLDAPBindPassword bindpassword AuthLDAPURL ldap://localhost/dc=pc-tony,dc=com?uid require ldap-group cn=ldapgroup1,ou=groups,dc=example,dc=com hth Cheers, Tony --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|