You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by David Long <DL...@Lynden.com> on 2011/02/15 19:55:19 UTC

RE: [users@httpd] Re: Apache2+LDAP authentication problem

Hi David,

I am using LDAP authentication too. I have similar configuration line with yours in httpd.conf file and it works for authentication part.
But I found out that once I authenticated, the credential will stay forever until I close to browser. If I left the browser open over a day, and it leave the page go to yahoo etc then comes back, it will not challenge me for authentication.

I have following line in  httpd.conf
LDAPCacheTTL 600
LDAPOpCacheTTL 600

But it does not seems making any difference.

Does authentication expiration works on your set up?

Thanks in advance.

David Long

From: David (Dave) Donnan [mailto:david.donnan@thalesgroup.com]
Sent: Monday, January 24, 2011 2:30 AM
To: users@httpd.apache.org; Tomas Pelka
Subject: Re: [users@httpd] Re: Apache2+LDAP authentication problem

Tomas hello.

It works for me, I have the following:

httpd.conf:
------------
AuthLDAPURL              "ldaps://<hostname>:636/ou=internal,ou=People,o=group"
# Note the above is simpler than yours
# Note I don't use AuthzLDAPAuthoritative off
...
AuthLDAPBindDN "cn=asdf,...,o=group"
AuthLDAPBindPassword <plain text password>

...
require valid-user
...
Cdlt, Dave
-------

Firstly, sorry that On 21/01/2011 00:55, Tomas Pelka wrote:

AuthzLDAPAuthoritative off