Having implemented a similar configuration, I have encountered the same
limitation that you refer to. I am unable to authenticate users who are
outside of a single top-level OU in AD. Any users anywhere in that one
OU that I specify have no problems authenticating but that is where it
stops.
Thanks,
--
Joshua M. Miller, RHCE
Bliss, Aaron wrote:
Hi everyone,
I have a quick question on apache configuration when attempting to
authenticate against Active Directory; the following configuration works
great for users that are in the Test OU, however it doesn't seem to work
for users that are in an OU below the Test OU; is there any way to
configure apache to search recursively in the AD ldap domain until it
finds and answer? Thanks very much for your help.
Aaron
<directory /var/www/html/chat1>
AuthType Basic
AuthName "authorization required"
AuthLDAPBindDN cn=servicacct,ou=Service-Users,dc=preferredcare,dc=org
AuthLDAPBindPassword servicepass
AuthLDAPURL
"ldap://dc1.preferredcare.org:389/ou=Test,dc=preferredcare,dc=org?sAMAcc
ountName?sub?(objectClass=*)"
#require user awb
require group cn=testgroup1,ou=Groups,dc=preferredcare,dc=org
</directory>
Confidentiality Notice:
The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information. If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited. If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list