D does
the job with a lot less fuss by just sending the username and password straight
to Active Directory (no searches needed).
Since I just want to authenticate, and not grant permissions based on Windows
user groups, this works perfectly. See
<http://article.gmane.org/gmane.comp.apache.use
.cpan.org/~reggers/Apache2-AuthenDBMCache-0.01/AuthenDBMCache.pm
>
>As having an AD bind for every http request slows down things quite
>substantially...
I'll set that up next.
Thanks to everyone who helped investigate the problem.
--
Ed Avis
---
ause there are so many tantalizing
half-complete howto instructions on the web, I'm convinced that somebody
somewhere has been able to make it work.
--
Ed Avis
-
The official User-To-User support forum of the Apache HT
ctory server failed (or never
happened), since the server responds 'a successful bind must be completed'. The
AuthLDAPBindDN and AuthLDAPBindPassword I put in the file do work if I use
Perl's Net::LDAP library to connect, but seemingly not here. If I deliberately
put a wrong pass
]
Is there a way I can make it log what search it is running on the Directory and
what results were returned?
--
Ed Avis
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org
Ed Avis waniasset.com> writes:
>Hmm, so what Apache does is first of all bind to the directory server, then do
>a
>search using the query string which returns the 'cn' (common name). Finally it
>constructs a distinguished name using this value of 'cn' and the
e Active Directory server allows
you to bind giving a DN and password? I had really expected that Apache would
just pass through the username entered by the user. That seems much simpler.
--
Ed Avis
-
The official User-To-U
t was added in 2.2.11. So I'll upgrade and try
again.
--
Ed Avis
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubs
2f02 in ap_mpm_run () from /usr/sbin/httpd
#13 0x008877c9 in main () from /usr/sbin/httpd
Searching for this doesn't turn up anything obvious.
--
Ed Avis
-
The official User-To-User support forum of the Apache HTTP
ername and
password but the page that appears is blank. The error log has
[Fri Feb 27 11:26:09 2009] [notice] child pid 18708 exit signal Segmentation
fault (11)
So I suppose I need to run Apache under the debugger, or make it generate a core
dump, to see where it's crashing. Unless you can s
eone contributes code.
Thanks for clarifying. This means that to get the current code working, I must
find the right LDAP search expression to locate users in the Directory. This
might be complicated by the fact that they are under 'WCL users' which
username and the password supplied by the user.
Is that correct?
If so, it seems unnecessary in the case of Active Directory, since AD allows you
to bind simply giving username and password (you don't have to give a full DN
when binding).
--
Ed Avis
--
utting it into httpd.conf. However, specifying a DN
'CN=WCL Users,CN=WCL Logins,DC=wcl,DC=local' does not work. Any
suggestions?)
--
Ed Avis
-
The official User-To-User support forum of the Apache HTTP Server Proj
13 matches
Mail list logo
