https://bz.apache.org/bugzilla/show_bug.cgi?id=65633
Bug ID: 65633
Summary: mod_authnz_ldap doesn't support SASL EXTERNAL bind to
ldap
Product: Apache httpd-2
Version: 2.5-HEAD
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P2
Component: mod_authnz_ldap
Assignee: bugs@httpd.apache.org
Reporter: chec...@d6.com
Target Milestone: ---
Hi, mod_authnz_ldap doesn't support httpd connecting to LDAP servers that
require SASL EXTERNAL authentication using certificates (which provide the
binddn implicitly). If there's a binddn specified with AuthLDAPBindDN it tries
to use a password, if no binddn it tries anonymous.
There are a couple related very old bug reports:
https://bz.apache.org/bugzilla/show_bug.cgi?id=55178
This is on the mod_auth_ldap module, and had the problem of using the _s
synchronous sasl bind function.
https://bz.apache.org/bugzilla/show_bug.cgi?id=48780
This one is about allowing clients to use certificates, not httpd using certs
to connect.
I'm thinking about adding this to my local version of mod_authnz_ldap to
support some features on my site using ldap-attribute queries. If you guys are
interested in a patch to add this
long-requested-but-obviously-not-that-high-priority feature, I can do it
"right," if not I'll probably hack it a bit since it'll just be for me. Let me
know!
Thanks,
Chris
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
