how to use ldap authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I am trying to use httpd 2.2.17 with ldap authentication but get "ldap initialization failed" message
Here is my configuration
I downloaded apr 1.4.2 and apr-util 1.3.10

For apr 1.4.2, I did "configure --prefix=/www/apache2/apr-httpd/"

For apr util 1.3.10, I did "configure --prefix=/www/apache2/apr-util-httpd/ --with-apr=/www/apache2/apr-httpd/ --with-ldap"

For httpd-2.2.17
configure --enable-ldap --enable-authnz-ldap


All compiled and installed fine. In httpd.conf file I have following for my ldap authentication restricted folder.

AuthName "Staff Only"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL ldap://ldap.lynden.com:389/ou=people,dc=lynden,dc=com?uid?sub?(objectClass=organizationalPerson)
AuthzLDAPAuthoritative off
require valid-user


I can started httpd. But when I hit restricted folder. I still got error.

Here is my error_log, parser fine but ldap initialization failed. How do I test my apache ldap function? Or do I need to recompile my apr-util?

[Wed Dec 29 15:37:12 2010] [debug] mod_authnz_ldap.c(1010): [293] 
auth_ldap url parse: 
`ldap://128.1.10.243:389/ou=people,dc=lynden,dc=com?uid?sub?(objectCla
ss=organizationalPerson)', Host: 128.1.10.243:389, Port: 389, DN: 
ou=people,dc=lynden,dc=com, attrib: uid, scope: subtree, filter: 
 (objectClass=organizationalPerson), connection mode: not using SSL 
 [Wed Dec 29 15:37:12 2010] [debug] mod_authnz_ldap.c(403): [client 
12.171.37.10] [293] auth_ldap authenticate: using URL 
ldap://128.1.10.243:389/ou=people,dc=lynden,dc=com?uid?sub?(objectClas
s=organizationalPerson) [Wed Dec 29 15:37:12 2010] [info] [client 
12.171.37.10] [293] auth_ldap authenticate: user dlong authentication 
failed; URI /EMU [LDAP: ldap initialization failed][Unknown error]

Can someone help?

Thanks in advance.

David Long

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux