You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2004/08/20 22:09:45 UTC
DO NOT REPLY [Bug 22711] -
SSL and LDAPS
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=22711>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=22711
SSL and LDAPS
------- Additional Comments From gregaryh@juno.com 2004-08-20 20:09 -------
I had the exact same problem. Turned out that the LDAPTrustedCA directive
requires the ABSOLUTE path to the certificate file. I had been using the
relative path to the ServerRoot directive. This is inconsistent. Can someone
look into this? Also the log files did not indicate anything was wrong with the
location I fed it, even in debug mode:
/bin/apachectl sslstart
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(918): [28239] ldap cache: Setting
shared memory cache size to 200000 bytes.
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(972): [28239] ldap cache: Setting
search cache size to 1024 entries.
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(953): [28239] ldap cache: Setting
cache TTL to 600000000 microseconds.
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(1005): [28239] ldap cache:
Setting operation cache size to 1024 entries.
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(987): [28239] ldap cache: Setting
operation cache TTL to 600000000 microseconds.
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(1018): LDAP: SSL trusted
certificate authority file - conf/ssl.crt/TrustedRootCert.b64
[Fri Aug 20 13:22:24 2004] [debug] util_ldap.c(1034): LDAP: SSL trusted
certificate authority file type - BASE64_FILE
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(698): [28239] auth_ldap url
parse:
`ldaps://ccm1.provo.novell.com/o=novell?uid?sub?(&(objectclass=posixAccount)(NFORGEgidNumber=*))'
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(719): [28239] auth_ldap url
parse: Host: ccm1.provo.novell.com
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(721): [28239] auth_ldap url
parse: Port: 636
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(723): [28239] auth_ldap url
parse: DN: o=novell
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(725): [28239] auth_ldap url
parse: attrib: uid
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(727): [28239] auth_ldap url
parse: scope: subtree
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(732): [28239] auth_ldap url
parse: filter: (&(objectclass=posixAccount)(NFORGEgidNumber=*))
[Fri Aug 20 13:22:24 2004] [debug] mod_auth_ldap.c(790): LDAP: auth_ldap using
SSL connections
This is not mentioned anywhere in the documentation.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org