Unfortunately that doesn't work either:
LDAPTrustedCA /usr/local/apache2/conf/ssl.crt/cert7.db
LDAPTRustedCAType cert7.db
startup error:
Syntax error on line 1073 of /usr/local/apache2/conf/httpd.conf:
Invalid command 'LDAPTrustedCA', perhaps mis-spelled or defined by a
module not included in the server configuration
-- Trev
Brad Nicholes wrote:
>
> Yes. In order to support SSL on multiple platforms, a more generic
> directive was required. To specify a cert7.db file you will need to use
> the directives:
>
> LDAPTrustedCA <path to cert7.db>
> LDAPTRustedCAType CERT7_DB_PATH
>
> The most recent documentation page for mod_ldap contains the
> description of the new directive.
>
> Brad
>
> Brad Nicholes
> Senior Software Engineer
> Novell, Inc., the leading provider of Net business solutions
> http://www.novell.com
>
> >>> [EMAIL PROTECTED] Tuesday, March 11, 2003 4:53:25 PM >>>
>
> Well, after successfully compiling auth_ldap with the
> OpenLDAP libs I found that it doesn't jive well with
> our Netscape LDAP server..
>
> So... I finally rebuilt with the Netscape4-LDAP-SDK
> libs..
>
> Since then I received the following error:
>
> [Tue Mar 11 00:42:19 2003] [warn] [client 134.15.0.112] [1667653]
> auth_ldap authenticate: user 25145 authentication failed; URI
> /secure/finance/FA/search.jsp [secure LDAP requested, but no CA cert
> defined][Unknown error], referer:http://
>
> So, I then placed my cert7.db file in APACHE2/conf directory and
> pointed
> it
> to the cert db file by using the following in my httpd.conf:
>
> Syntax error on line 1073 of /usr/local/apache2/conf/httpd.conf:
> Invalid command 'AuthLDAPStartTLS', perhaps mis-spelled or defined by
> a
> module not included in the server configuration
>
> auth_ldap was built statically into the core and not ran as a mod.
>
> Is there a different command used for Apache2 to load the cert7.db
> file
> now?
>
> It worked for our older 1.3 apache..
>
> Thanks,
>
> -- Trev
>
