Hi again,
I changed the ldapurl and the logs changed to:
[Fri Oct 26 09:58:11 2007] [debug]
mod_authnz_ldap.c(376): [client 172.21.194.71] [13900]
auth_ldap authenticate: using URL
ldap://iceman/ou=users,dc=uk,dc=siroe,dc=com?sAMAccountName?sub?
[Fri Oct 26 09:58:11 2007] [debug]
I insert LogFormat %h %l %u %t \%r\ %s %b \%{Referer}i\
\%{User-Agent}i\ %T %v %{X-Forwarded-For}i xfull
but i didnt get any Log :( I only see the Ip from the Reverse Proxy.
What should configure in the Reverse Proxy (Apache) so that it writes an
X-Forwared-For Header?
On 10/25/07, [EMAIL
On Fri, 26 Oct 2007 09:55:33 +0200
Michael Grund [EMAIL PROTECTED] wrote:
What should configure in the Reverse Proxy (Apache) so that it writes
an X-Forwared-For Header?
It does that by default, at least in current versions.
You can see that and other nonstandard headers by running the
Thanks Joshua. That didn't work for some reason but it led me to
trying some similar things out, and I ended up with a solution which
excludes certain IP addresses from the authentication process, which
should work fine for us as an alternative to excluding certain URLs:
Location /
Order
I've got a vanilla Apache 2.0 server up on RHEL4. HTML pages have a
bizarre 20 second delay in returning them to the client. Here are the
details:
1. HostNameLookups is off for this virtual host
2. I've disabled SELinux to rule that out
3. There doesn't seem to be many network collisions so I
Hello,
I have a problem with mod_dav. I want to have a web server who has some
directories which are accessible via WebDAV. So far this works nice using
mod_dav. But I cannot have a sub dir which is not webdav enabled. This is
something which is noted in documentation, but I guess there must
Looks like you can't acccess the resource.
See: http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html
The Authorization Phase
During the authorization phase, mod_authnz_ldap attempts to determine if
the user is authorized to access the resource. Many of these checks
require mod_authnz_ldap
On 10/26/07, Stusynski, Dan [EMAIL PROTECTED] wrote:
Looks like you can't acccess the resource.
authnz_ldap + require valid-user doesn't work as expected in 2.2.4,
try AuthZLDAPAuthoritative off
--
Eric Covener
[EMAIL PROTECTED]
You may want to try a network monitor to see what's actually going on. I use
Network Spy on the PC. The freeware version just nags once in a while but
otherwise is pretty complete. It will show all the transactions and may give
some indication as to where things are going slow.
- Steve
Tim
I tried AuthZLDAPAuthoritative off and indeed it
worked...now...what is the impact of disabling
AuthZLDAPAuthoritative??
thanks bunches...
--- Eric Covener [EMAIL PROTECTED] wrote:
On 10/26/07, Stusynski, Dan [EMAIL PROTECTED]
wrote:
Looks like you can't acccess the resource.
authnz_ldap
On 10/26/07, Stefan Bertels [EMAIL PROTECTED] wrote:
Directory /local/main/guestbook
require user guestbook
/Directory
How can I have one web server where some dirs are Dav-enabled and some not. I
cannot work with multiple virtual hosts (SSL).
There are few different way's to do this.
ldap-user is not viable...I will have to add all users
by hand... Any other alternative?
also, AuthLDAPBindPassword is written in clear text in
the file...Any other alternative?
Many thanks!
--- Tom Hart [EMAIL PROTECTED] wrote:
authzldapauthoritative sets it such that ldap is the
only
authzldapauthoritative sets it such that ldap is the only authentication
that can be used. However valid-user is not seen as an ldap
authentication (try ldap-user, etc.), so it needs to be able to fall
back on basic authentication even though it is using the ldap setup to
validate.
Basically
On 10/26/07, Melanie Pfefer [EMAIL PROTECTED] wrote:
I tried AuthZLDAPAuthoritative off and indeed it
worked...now...what is the impact of disabling
AuthZLDAPAuthoritative??
Probably no harm, either some other module down the line will be able
to understand a least 1 'require' (in your case,
I'm not sure that you really need an alternative. using the setup you
have now should work fine, with authoritative off, and using valid-user.
I have that same exact setup running on our corporate intranet, and it's
been working fine.
Also, I do not know of an alternative for having the
Hello,
I was successfully install Apache on my windows machine.I want to test php
script offline in my computer. I was also downloaded the php archive. But i
am not able to install php on Apache.Please some help to fix it out.
Thanks,
Vishal
[EMAIL PROTECTED]
[EMAIL PROTECTED]
--
Vishal
thanks!
--- Tom Hart [EMAIL PROTECTED] wrote:
I'm not sure that you really need an alternative.
using the setup you
have now should work fine, with authoritative off,
and using valid-user.
I have that same exact setup running on our
corporate intranet, and it's
been working fine.
Generally, more information is a good idea, at least for anything more
complicated than an install problem.
Try this tutorial. It'll run you through installing apache and php on a
windows box (mySQL too if you're interested). Remember, google is your
friend.
Vishal Gaurav wrote:
Hello,
I
Hey guys I am running CentOS 5 with httpd 2.2.3
I am trying to configure mod_authnzldap authing against Active Directory and I
have it working about 50% of the
time.
About 50% of the time this works with no issue, the rest of the time it fails.
Sometimes it fails and notes the following in
This problem affects multiple files and affects all files larger than
256 bytes. This proves the problem is not the class file. Even if
Apache httpd has a setting to limit the size of outbound transfers, I
doubt you accidentally configured it.
This issue sounds like a network problem, usually
A client of ours just renewed his cert. When we installed the new cert,
apache gave the old:
saero44 ~ tail /usr/local/apache/logs/error_log
[Fri Oct 26 14:27:36 2007] [error] ApacheSSLSetCertStuff failed
[Fri Oct 26 14:28:11 2007] [crit] unable to set private key
[Fri Oct 26 14:28:11 2007]
I have some more information on this problem. I tried running the applet on
Slax Server which uses 2.04 Apache rather than the 2.2.4 I was running on
standard Slax. It worked fine there. I also found the same problem mentioned on
another forum that was fixed by using the earlier Apache, also on
22 matches
Mail list logo
