You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Cesar Jorge Martinez Mata <cj...@hi-iberia.es> on 2006/06/23 18:37:28 UTC
[users@httpd] Authentication problem with ldap using apache 2.2.2
Hi,
I have a authentication problem using apache 2.2.2.
The httpd.conf is:
<Location />
AuthType basic
AuthName "auth"
AuthBasicProvider ldap
AuthLDAPBindDN uid=ldap,ou=Users,dc=SER
AuthLDAPBindPassword serpw
AuthLDAPUrl "ldap://ser:9050/dc=SER"
Require valid-user
</Location>
When I go to web appear the authentication window, I write the username and
pass, and does not go, appear new authentication window.
I prove the same configuration with a iplanet web server and working ok.
The logs of the ldap server with apache and a exist user:
[23/Jun/2006:18:31:07 +0200] conn=3716 op=3 BIND
dn="uid=ldap,ou=Users,dc=SER" method=128 version=3
[23/Jun/2006:18:31:07 +0200] conn=3716 op=3 RESULT err=0 tag=97 nentries=0
etime=0
[23/Jun/2006:18:31:07 +0200] conn=3716 op=4 SRCH base="dc=SER" scope=2
filter="(&(objectclass=*)(uid=theuser))"
[23/Jun/2006:18:31:07 +0200] conn=3716 op=4 RESULT err=0 tag=101 nentries=1
etime=0
[23/Jun/2006:18:31:07 +0200] conn=3716 op=5 BIND
dn="uid=theuser,ou=Users,dc=SER" method=128 version=3
[23/Jun/2006:18:31:07 +0200] conn=3716 op=5 RESULT err=0 tag=97 nentries=0
etime=0
The logs of the ldap server with iplanet web server and exist user:
[23/Jun/2006:18:29:08 +0200] conn=1344 op=212 SRCH base="dc=SER" scope=2
filter="(uid=theuser)"
[23/Jun/2006:18:29:08 +0200] conn=1344 op=212 RESULT err=0 tag=101
nentries=1 etime=0
[23/Jun/2006:18:29:08 +0200] conn=1344 op=213 BIND
dn="uid=theuser,ou=Users,dc=SER" method=128 version=3
[23/Jun/2006:18:29:08 +0200] conn=1344 op=213 RESULT err=0 tag=97 nentries=0
etime=0
The ldap server is directory server 4.1, and the apache compilation is:
./configure --prefix=/app/apache-2.2.2 \
--enable-rule=SHARED_CORE \
--enable-rule=SHARED_CHAIN \
--enable-module=so \
--enable-module=most \
--enable-shared=max \
--enable-authnz-ldap \
--enable-ldap \
--with-ldap \
--enable-cache \
--enable-disk-cache \
--enable-file-cache \
--enable-proxy \
--enable-ssl \
--with-ssl=/usr/local/ssl
Why not go?
Thanks,
Cesar Jorge