Re: apache ldap over SSL.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I make a mistake, when the httpd server start, there is this message in access log: 

Digest: generating secret for digest authentication ...
[Thu Jun 08 18:04:02 2006] [notice] Digest: done
[Thu Jun 08 18:04:02 2006] [notice] LDAP: Built with OpenLDAP LDAP SDK
[Thu Jun 08 18:04:02 2006] [notice] LDAP: SSL support available

and
I try to modify http.spec and add --with-ldap-sdk=netscape after ../configure \ 
or after mpmbuild prefork \
       --enable-mods-shared=all \
       --enable-ssl --with-ssl --enable-distcache \
       --enable-proxy \
       --enable-cache --enable-mem-cache \
       --enable-file-cache --enable-disk-cache \
       --enable-ldap --enable-auth-ldap \

but it changes nothing.




From: Graham Leggett <minfrin@xxxxxxxx>
Reply-To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> 
Subject: Re:  apache ldap over SSL.
Date: Thu, 08 Jun 2006 17:29:21 +0200

Mickael Besse wrote:


Note this message in access log when the httpd server start
LDAP: Built with OpenLDAP LDAP SDK
LDAP: SSL support unavailable
This message tells you that SSL support is not available in the OpenLDAP SDK linked to by mod_auth_ldap.
You need to make sure that OpenLDAP is built with SSL enabled, or mod_auth_ldap is linked to an LDAP library that has SSL enabled, otherwise none of the SSL LDAP support will work.
I want to rebuild the srpm from fedora core 3 updates, and include --with-ldap-sdk=netscape for the auth_ldap module. But I have no idea where to specifie this. httpd.spec file defines core options, but not modules options.
This isn't true, both module and core options are specified on the same ./configure line, as the modules are included in the same rpm. Just change the ./configure line as you require to include the Netscape LDAP SDK, and watch the compile to make sure you are not still picking up OpenLDAP. If you want to use mod_auth_ldap for anything in production, I suggest downloading and installing httpd v2.2 (available from Apache either as source or as an SRPM) rather than the httpd v2.0 that comes with Fedora 3. Lots of things in v2.0 were fixed in v2.2. 

Regards,
Graham
--




<< smime.p7s >>






--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users


_________________________________________________________________
Retrouvez tout en un clin d'oeil avec la barre d'outil MSN Search ! http://desktop.msn.fr/ 

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux