You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Cesar Jorge Martinez Mata <cj...@hi-iberia.es> on 2006/06/23 18:37:28 UTC

[users@httpd] Authentication problem with ldap using apache 2.2.2

Hi,

 

I have a authentication problem using apache 2.2.2.

 

The httpd.conf is:

 

<Location />

    AuthType basic

    AuthName "auth"

    AuthBasicProvider ldap

    AuthLDAPBindDN uid=ldap,ou=Users,dc=SER

    AuthLDAPBindPassword serpw

    AuthLDAPUrl "ldap://ser:9050/dc=SER"

    Require valid-user

</Location>

 

When I go to web appear the authentication window, I write the username and
pass, and does not go, appear new authentication window.

 

I prove the same configuration with a iplanet web server and working ok.

 

 

The logs of the ldap server with apache and a exist user:

[23/Jun/2006:18:31:07 +0200] conn=3716 op=3 BIND
dn="uid=ldap,ou=Users,dc=SER" method=128 version=3

[23/Jun/2006:18:31:07 +0200] conn=3716 op=3 RESULT err=0 tag=97 nentries=0
etime=0

[23/Jun/2006:18:31:07 +0200] conn=3716 op=4 SRCH base="dc=SER" scope=2
filter="(&(objectclass=*)(uid=theuser))"

[23/Jun/2006:18:31:07 +0200] conn=3716 op=4 RESULT err=0 tag=101 nentries=1
etime=0

[23/Jun/2006:18:31:07 +0200] conn=3716 op=5 BIND
dn="uid=theuser,ou=Users,dc=SER" method=128 version=3

[23/Jun/2006:18:31:07 +0200] conn=3716 op=5 RESULT err=0 tag=97 nentries=0
etime=0

 

The logs of the ldap server with iplanet web server and exist user:

[23/Jun/2006:18:29:08 +0200] conn=1344 op=212 SRCH base="dc=SER" scope=2
filter="(uid=theuser)"

[23/Jun/2006:18:29:08 +0200] conn=1344 op=212 RESULT err=0 tag=101
nentries=1 etime=0

[23/Jun/2006:18:29:08 +0200] conn=1344 op=213 BIND
dn="uid=theuser,ou=Users,dc=SER" method=128 version=3

[23/Jun/2006:18:29:08 +0200] conn=1344 op=213 RESULT err=0 tag=97 nentries=0
etime=0

 

The ldap server is directory server 4.1, and the apache compilation is:

 

./configure --prefix=/app/apache-2.2.2 \

--enable-rule=SHARED_CORE \

--enable-rule=SHARED_CHAIN \

--enable-module=so \

--enable-module=most \

--enable-shared=max \

--enable-authnz-ldap \

--enable-ldap \

--with-ldap \

--enable-cache \

--enable-disk-cache \

--enable-file-cache \

--enable-proxy \

--enable-ssl \

--with-ssl=/usr/local/ssl

 

Why not go?

 

Thanks,

Cesar Jorge