Re: Group authentication to AD

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


>Does it happen without the mod_auth_alias?  
I don't think I have tested that.  Will do so now.

>I thought you were describing an error without "require valid-user"?
I just pasted the config from my original post.  When I tested without the "Require valid-user", the line was commented out.


PATI MOSS
System Engineer Sr. Professional
CSC


From: Eric Covener <covener@xxxxxxxxx>
To: users@xxxxxxxxxxxxxxxx
Date: 11/19/2010 11:00 AM
Subject: Re: Group authentication to AD




On Fri, Nov 19, 2010 at 10:57 AM, Patricia A Moss <pmoss4@xxxxxxx> wrote:
>
> >With what configuration exactly?
> My location block is configured as below:
> <Location /test_repo>
> dav svn
> SVNPath /disk01/home/test_repo
> AuthType Basic
> AuthName "Subversion Repository"
> AuthBasicProvider ldap-FCGNET ldap-VIET
> AuthzLDAPAuthoritative on
> Require valid-user
> Require ldap-group CN=Active_Directory Group Name,OU=U.S.,OU=Groups,DC=domain,DC=com
> #Require ldap-user pmoss
> </Location>
>
> I've configured my aliases, in my http.conf file, as follows:
> <AuthnProviderAlias ldap ldap-FCGNET>
>         AuthLDAPBindDN FCGNET\account_name
>         AuthLDAPBindPassword xxxxxxxxxx
>         AuthLDAPURL ldap://server.domain.com:3268/DC=domain,DC=com?samAccountName?sub?(objectCategory=person)
> </AuthnProviderAlias>
> <AuthnProviderAlias ldap ldap-VIET>
>         AuthLDAPBindDN "CN=account_name,OU=Service Accounts,OU=Users,OU=Production,DC=domain,DC=com"
>         AuthLDAPBindPassword xxxxxxxxx
>         AuthLDAPURL ldap://server.domain.com:3268/DC=domain,DC=com?samAccountName?sub?(objectCategory=person)
> </AuthnProviderAlias>
>

Does it happen without the mod_auth_alias?  I thought you were
describing an error without "require valid-user"?

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux