|
Home > Archive > Netware Webserver > July 2006 > Apache & LDAP
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| g.anglin@vanderbilt.edu 2006-07-06, 7:11 pm |
| I have recently updated a server to 6.5 sp5 and migrated my web site to
Apache. I am trying to restrict access to a folder using LDAP and eDirectory
This is in my httpd.conf file
<Directory STAFF:\Staffweb/libonly>
Options Indexes Multiviews
AllowOverride Authconfig
Order deny,allow
Allow from all
AuthType Basic
AuthName Protected
#require valid-user
AuthLDAPAuthoritative On
AuthLDAPURL ldaps://<LDAP DNS NAME>/o=heardlibrary?cn
#require edir-user
require group cn=Everyone,o=heardlibrary
</Directory>
I have a similar entry on another server and authentication works. I get
this in the Apache error log when attempting to access the folder
[Thu Jul 06 15:23:44 2006] [warn] [client xxx.xxx.xxx.xxx] [170] auth_ldap
authenticate: user anglingh authentication failed; URI /libonly [LDAP:
ldap_simple_bind_s() failed][Can't contact LDAP server]
I have checke that all the same modules are loaded on both servers.
| |
| Tommy Mikkelsen 2006-07-07, 7:11 pm |
| Can you authenticate to the LDAP server, using LDAP Browser ????
--
Best Regards
Tommy Mikkelsen
IT Quality A/S
Denmark
Novell Support Forums SYSOP
Please Report back any success or failure, That way we all learn
Sorry, but no support through email
"I hate bugs".......Tommy Lee Jones, MIB
Be a GroupWiseR, go http://www.groupwiser.net
| |
| g.anglin@vanderbilt.edu 2006-07-10, 1:11 pm |
| No, I will trace the activity when attempting to use this tool.
I am able to login into the apacheadmin tool which seems to be
authenticating through LDAP.
George
> Can you authenticate to the LDAP server, using LDAP Browser ????
>
>
> --
> Best Regards
>
> Tommy Mikkelsen
>
> IT Quality A/S
> Denmark
>
> Novell Support Forums SYSOP
>
> Please Report back any success or failure, That way we all learn
>
> Sorry, but no support through email
>
> "I hate bugs".......Tommy Lee Jones, MIB
>
> Be a GroupWiseR, go http://www.groupwiser.net
| |
| g.anglin@vanderbilt.edu 2006-07-10, 7:11 pm |
| Actually I can authenticate using a LDAP browser.
> Can you authenticate to the LDAP server, using LDAP Browser ????
>
>
> --
> Best Regards
>
> Tommy Mikkelsen
>
> IT Quality A/S
> Denmark
>
> Novell Support Forums SYSOP
>
> Please Report back any success or failure, That way we all learn
>
> Sorry, but no support through email
>
> "I hate bugs".......Tommy Lee Jones, MIB
>
> Be a GroupWiseR, go http://www.groupwiser.net
| |
| Tommy Mikkelsen 2006-07-10, 7:11 pm |
| Change the require line back to edir-user
Then create an edir group, add members to it, and grant the group the
needed file-rights
That should do it with the syntax.
Then for a short test, try and switch to ldap instead of ldaps, just to verify
wheter or not it works then
--
Best Regards
Tommy Mikkelsen
IT Quality A/S
Denmark
Novell Support Forums SYSOP
Please Report back any success or failure, That way we all learn
Sorry, but no support through email
"I hate bugs".......Tommy Lee Jones, MIB
Be a GroupWiseR, go http://www.groupwiser.net
| |
| g.anglin@vanderbilt.edu 2006-07-11, 1:12 pm |
| That works. I had to also uncomment "require valid-user" before it worked.
It is working wihout TLS so now I can examine that part of the puzzle.
thanks for the help
> Change the require line back to edir-user
>
> Then create an edir group, add members to it, and grant the group the
> needed file-rights
>
> That should do it with the syntax.
>
> Then for a short test, try and switch to ldap instead of ldaps, just to
verify
> wheter or not it works then
>
> --
> Best Regards
>
> Tommy Mikkelsen
>
> IT Quality A/S
> Denmark
>
> Novell Support Forums SYSOP
>
> Please Report back any success or failure, That way we all learn
>
> Sorry, but no support through email
>
> "I hate bugs".......Tommy Lee Jones, MIB
>
> Be a GroupWiseR, go http://www.groupwiser.net
| |
| Tommy Mikkelsen 2006-07-11, 7:11 pm |
| You're welcome
--
Best Regards
Tommy Mikkelsen
IT Quality A/S
Denmark
Novell Support Forums SYSOP
Please Report back any success or failure, That way we all learn
Sorry, but no support through email
"I hate bugs".......Tommy Lee Jones, MIB
Be a GroupWiseR, go http://www.groupwiser.net
|
|
|
|
|