https://issues.apache.org/bugzilla/show_bug.cgi?id=50296
Summary: LDAPVerifyServerCert and possibly LDAPTrustedMode
should be moved to Virtual Host or Directory Context
Product: Apache httpd-2
Version: 2.2.16
Platform: PC
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_authz_ldap
AssignedTo: [email protected]
ReportedBy: [email protected]
At the moment, these two parameters are only allowed in the server config
context
LDAPTrustedMode
LDAPVerifyServerCert
However, as my current use case illustrates, being forced to globally set these
parameters instead of on a per LDAP server basis creates unwanted behavior.
I have two different directories that are secured using LDAPS - one uses a
self-signed cert that I need to set 'LDAPVerifyServerCert off' but the other
one has an authentic certificate that ignoring exposes that directory to
possible security issues.
Ideally I would want to put these parameters in my <AuthnProviderAlias ldap
myconnection> context, along with all of the LDAP server specifics.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
