Re: Lenny -> Squeeze : Apache2:LDAP SSL auth not working anymore

2011-03-31 Thread Stephen Young 
I'm having the example same problem after my upgrade from Lenny to Squeeze

With SSL on this just gives me "Internal Server Error" without writing to the 
logs:

ErrorDocument 404 default
DAV svn
SVNParentPath /var/www/usvn-1.0/files/svn
SVNListParentPath off
AuthType Basic
AuthName "USVN"
AuthBasicProvider ldap
AuthzLDAPAuthoritative off
AuthLDAPURL 
ldaps://myserver.mydomain.com:989/cn=users,dc=myserver,dc=mydomain,dc=com?uid
AuthzSVNAccessFile /var/www/usvn-1.0/files/authz
Require valid-user


If I turn SSL off on the LDAP server the following works fine:

ErrorDocument 404 default
DAV svn
SVNParentPath /var/www/usvn-1.0/files/svn
SVNListParentPath off
AuthType Basic
AuthName "USVN"
AuthBasicProvider ldap
AuthzLDAPAuthoritative off
AuthLDAPURL 
ldap://myserver.mydomain.com:389/cn=users,dc=myserver,dc=mydomain,dc=com?uid
AuthzSVNAccessFile /var/www/usvn-1.0/files/authz
Require valid-user




--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/7aecb912-7d3b-47a3-a0e0-361b38890...@gmail.com

Lenny -> Squeeze : Apache2:LDAP SSL auth not working anymore

2011-03-06 Thread Denny Schierz 
hi,

after upgrading Lenny to Squeeze, ldap auth over .htacces/virtual-host.config 
stops working when using SSL.  I've searched hours on friday and though 
packages are missing or broken. Apache2 brings only "Internal Server Error", 
but nothing in the error/debug logfiles. Apache asks for the username/password 
and the user can type anything, after some seconds you get the error page.
Then I switched to non SSL and, voila .. it works

==

AuthType Basic
AuthName "Icinga Monitoring"
AuthBasicProvider ldap
AuthLDAPURL "ldap://ldap2/cn=accounts,dc=domain,dc=foo?uid?sub?(objectClass=*)"
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN On
AuthzLDAPAuthoritative Off

# Define allowed LDAP users
Require ldap-group cn=rbg,cn=admins,cn=groups,dc=domain,dc=doo

===

this works

but not:

===

AuthType Basic
AuthName "Icinga Monitoring"
AuthBasicProvider ldap
AuthLDAPURL 
"ldaps://ldap2:636/cn=accounts,dc=domain,dc=foo?uid?sub?(objectClass=*)"
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN On
AuthzLDAPAuthoritative Off

# Define allowed LDAP users
Require ldap-group cn=rbg,cn=admins,cn=groups,dc=domain,dc=foo

===

any suggestions?

cu denny



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/9ea677a5-7eab-49b3-b377-1d036fbb6...@4lin.net