You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Marc Jonkers <Ma...@zorggroepmeander.nl> on 2005/09/05 14:04:27 UTC

[users@httpd] Question Apache2 LDAP with SSL Windows Active Directory

Hi,
 
I am testing with LDAP auth to an AD. This works well with port 389, but
now I want it secure to I set port 636 (LDAPS).
 
When I look at the error.log I see:
 
[Mon Sep 05 13:51:45 2005] [warn] [client 10.10.20.110] [22408]
auth_ldap authenticate: user jonkm authentication failed; URI
/cgi-bin/smokeping.cgi [LDAP: ssl connections not supported][Unknown
error]
[Mon Sep 05 13:51:48 2005] [debug]
/home/adconrad/apache2/apache2-2.0.54/build-tree/apache2/modules/experim
ental/mod_auth_ldap.c(337): [client 10.10.20.110] [22408] auth_ldap
authenticate: using URL
ldaps://10.10.20.209:636/dc=corp,dc=meander,dc=nl?sAMAccountName?sub?(ob
jectclass=person)
[Mon Sep 05 13:51:48 2005] [warn] [client 10.10.20.110] [22408]
auth_ldap authenticate: user jonkm authentication failed; URI
/cgi-bin/smokeping.cgi [LDAP: ssl connections not supported][Unknown
error]
[Mon Sep 05 13:51:53 2005] [debug]
/home/adconrad/apache2/apache2-2.0.54/build-tree/apache2/modules/experim
ental/mod_auth_ldap.c(337): [client 10.10.20.110] [22408] auth_ldap
authenticate: using URL
ldaps://10.10.20.209:636/dc=corp,dc=meander,dc=nl?sAMAccountName?sub?(ob
jectclass=person)[Mon Sep 05 13:51:53 2005] [warn] [client 10.10.20.110]
[22408] auth_ldap authenticate: user meander\\jonkm authentication
failed; URI /cgi-bin/smokeping.cgi [LDAP: ssl connections not
supported][Unknown error][Mon Sep 05 13:51:56 2005] [debug]
/home/adconrad/apache2/apache2-2.0.54/build-tree/apache2/modules/experim
ental/mod_auth_ldap.c(337): [client 10.10.20.110] [22408] auth_ldap
authenticate: using URL
ldaps://10.10.20.209:636/dc=corp,dc=meander,dc=nl?sAMAccountName?sub?(ob
jectclass=person)[Mon Sep 05 13:51:56 2005] [warn] [client 10.10.20.110]
[22408] auth_ldap authenticate: user meander\\jonkm authentication
failed; URI /cgi-bin/smokeping.cgi [LDAP: ssl connections not
supported][Unknown error]

 
My line in apache2.conf
 
AuthLDAPURL
ldaps://10.10.20.209:636/dc=corp,dc=meander,dc=nl?sAMAccountName?sub?(ob
jectclass=person)
 
 
Anyone know what the problem is?
 
 
Thanx,
 
Marc

Re: [users@httpd] Question Apache2 LDAP with SSL Windows Active Directory

Posted by "William A. Rowe, Jr." <wr...@rowe-clan.net>.

Marc Jonkers wrote:
> Hi,
>  
> I am testing with LDAP auth to an AD. This works well with port 389, but 
> now I want it secure to I set port 636 (LDAPS).
>  
> When I look at the error.log I see:
>  
> [Mon Sep 05 13:51:45 2005] [warn] [client 10.10.20.110] [22408] 
> auth_ldap authenticate: user jonkm authentication failed; URI 
> /cgi-bin/smokeping.cgi [LDAP: ssl connections not supported][Unknown error]

The answer is right there - ldaps: isn't supported by your build of APR.
That might be changing in Apache 2.2 using the Win32 API.  Another, more
difficult solution is to roll openldap compiled using openssl options.

But the last I looked, the openldap project ditched its win32-specific
build schema so this might be a bit tricky.

Bill

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org