Thanks! I have a feeling you just saved me a tremendous amount of time, Barry. -- Trever > -----Original Message----- > From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list- > bounces@xxxxxxxxxx] On Behalf Of Barry Brimer > Sent: Monday, March 02, 2009 6:08 PM > To: General Red Hat Linux discussion list > Subject: Re: HTTPD + mod_auth_? for windows on RHEL5? (was RE: Howto > authenticate apache against AD? PAM?) > > > LoadModule ldap_module modules/mod_ldap.so > LoadModule authnz_ldap_module modules/mod_authnz_ldap.so > > ... > > LDAPSharedCacheSize 200000 > LDAPCacheEntries 1024 > LDAPCacheTTL 600 > LDAPOpCacheEntries 1024 > LDAPOpCacheTTL 600 > LDAPTrustedGlobalCert CA_BASE64 /etc/pki/tls/certs/root_ca_full.pem > LDAPTrustedMode SSL > > > ... > > VirtualHost x.x.x.x:x> > <Location /> > AuthLDAPURL > ldaps://ldap1.example.com,ldap2.example.com,ldap3.example.com/dc=exampl > e,dc=com?sAMAccountName?sub?(objectClass=User) > AuthLDAPBindDN cn=sypadl,dc=example,dc=com > AuthLDAPBindPassword topsecret > AuthzLDAPAuthoritative on > AuthType Basic > AuthName "Private" > AuthBasicProvider ldap > Require ldap-group CN=Group1,OU=Groups-Global,DC=example,DC=com > Require ldap-group CN=Group2,OU=Groups-Global,DC=example,DC=com > </Location> > </VirtualHost> > Quoting "Furnish, Trever G" <TGFurnish@xxxxxxxxxxxxxx>: > > > Anyone? Anyone? Anyone? :-) > > > > > -----Original Message----- > > > From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list- > > > bounces@xxxxxxxxxx] On Behalf Of Furnish, Trever G > > > Sent: Monday, March 02, 2009 12:59 PM > > > To: General Red Hat Linux discussion list > > > Subject: How to authenticate apache against AD? PAM? > > > > > > Just thought I'd poll the list and see how's everyone managing to > > > authenticate against active directory for Apache sites on RHEL5? > > > > > > I have a RHEL3 system that I want to migrate to RHEL5, and on the > > RHEL3 > > > system I've been mostly happy using "Pamacea", which allows Apache > to > > > authenticate using PAM (as in /etc/pam.d), so that I can just use > > > RHEL3's built-in SMB authentication hooks from a pam module. I > don't > > > know that Pamacea will work with the later version of Apache on > > RHEL5.3 > > > -- haven't made the attempt yet, but it doesn't look like it's been > > > updated in several years -- so I thought I'd just ask how everyone > > else > > > is doing that these days. > > > > > > -- > > > Trever Furnish, tgfurnish@xxxxxxxxxxxxxx > > > Herff Jones, Inc. Unix / Network Administrator > > > Phone: 317.612.3519 > > > Any sufficiently advanced technology is indistinguishable from > Unix. > > > > > > -- > > > redhat-list mailing list > > > unsubscribe mailto:redhat-list- > request@xxxxxxxxxx?subject=unsubscribe > > > https://www.redhat.com/mailman/listinfo/redhat-list > > > > -- > > redhat-list mailing list > > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > > https://www.redhat.com/mailman/listinfo/redhat-list > > > > !DSPAM:49ac6203261111361364286! > > > > > > > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
