On Mon, Nov 12, 2007 at 06:26:53PM -0500, Eric Covener wrote: > On Nov 12, 2007 4:23 PM, Mark H. Wood <mwood@xxxxxxxxx> wrote: > > httpd is returning 500 to the client. Log shows: > > > > [Mon Nov 12 15:59:35 2007] [warn] [client 127.0.0.1] [9159] auth_ldap > > authenticate: user mwood authentication failed; URI > > /svn/dspace/IDeA/trunk [LDAP: ldap_simple_bind_s() failed][Can't > > contact LDAP server] > > > > Tracing the network traffic shows that httpd establishes and then > > immediately tears down a connection with the directory service many > > times, without ever initiating an LDAP session: > > Are you able to try the same LDAP server w/o SSL? I just did, and it works. I'd welcome suggestions as to how I can get it working with SSL, as I don't want to be throwing cleartext passwords across the wire. I just raised LogLevel to debug. It logged seven identical attempts to authenticate: one, and then five seconds later six within the space of a single second. Nothing else was logged but the "can't contact LDAP server" (after it opened and discarded seven perfectly good TCP connections unused!) It never even tried to start the SSL handshake. -- Mark H. Wood, Lead System Programmer mwood@xxxxxxxxx Typically when a software vendor says that a product is "intuitive" he means the exact opposite.
Attachment:
pgpOhfxiOF0fV.pgp
Description: PGP signature
|