the 'user' is coming from mod_auth_kerb .
I am going to hack the code (mod_authnz_ldap) to strip off the
'@wherever' part .
Eric Covener wrote:
On Wed, Nov 19, 2008 at 2:06 PM, Minson, John M Mr ARMY GUEST
[EMAIL PROTECTED] wrote:
using 'snoop' I determined that the ldap module
I'm trying to implement mod_authnz_ldap and get the following error
auth_ldap authorise: User DN not found, ldap_search_ext_s() for user failed
I have tried dozens of combinations of AuthLDAPUrl and AuthLDAPBindDN
Is there anyway to get it to display the 'User DN' its trying to use ?
apache
On Wed, Nov 19, 2008 at 1:21 PM, Minson, John M Mr ARMY GUEST
[EMAIL PROTECTED] wrote:
I'm trying to implement mod_authnz_ldap and get the following error
auth_ldap authorise: User DN not found, ldap_search_ext_s() for user failed
I have tried dozens of combinations of AuthLDAPUrl and
using 'snoop' I determined that the ldap module is using a uid that
looks like this
[EMAIL PROTECTED]
The 'someuser' portion is what is in lDAP .
How do I pass just 'someuser' as the uid ?
I verified that '[EMAIL PROTECTED]' is contained in 'REMOTE_USER'
env variable
Eric Covener wrote:
On Wed, Nov 19, 2008 at 2:06 PM, Minson, John M Mr ARMY GUEST
[EMAIL PROTECTED] wrote:
using 'snoop' I determined that the ldap module is using a uid that looks
like this
[EMAIL PROTECTED]
The 'someuser' portion is what is in lDAP .
How do I pass just 'someuser' as the uid ?
That means
Great! That´s it!
I´ve tried to use a user called admin that exists in the LDAP server.
So, to make the test, I´ve created a crazy username and put it into the flat
file, and it works!
The Apache tries to consult the flat file only if it doesn´t find the user
in the LDAP server.
Now, another
Rodney Ramos wrote:
Great! That´s it!
I´ve tried to use a user called admin that exists in the LDAP server.
So, to make the test, I´ve created a crazy username and put it into the flat
file, and it works!
The Apache tries to consult the flat file only if it doesn´t find the user
in the LDAP
Thank you, André.
That´s because I´m migrating an application from Apache 1.3 to Apache 2.
On Apache 1.3 I was used to Apache::DBI, Apache::AuthDBI, mod_perl,
mod_auth_ldap etc.
Everything worked fine, but
Thank you again.
Rodney.
On Wed, Oct 22, 2008 at 11:52 AM, André Warnier [EMAIL
I´m trying to use the mod_authnz_ldap module to authenticate the users in a
Microsoft AD LDAP Server, but I´m having a lot of problems.
The only configuration that worked was:
AuthName
AuthType Basic
AuthBasicProvider ldap
AuthLDAPUrl ldap://ldapserver:3268/dc=domain,dc=com?cn;
On Tue, Oct 21, 2008 at 12:59 PM, Rodney Ramos [EMAIL PROTECTED] wrote:
I´m trying to use the mod_authnz_ldap module to authenticate the users in a
Microsoft AD LDAP Server, but I´m having a lot of problems.
The only configuration that worked was:
AuthName
AuthType Basic
Eric Covener wrote:
On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
referrals.
Eric, can you elaborate a bit on that, or direct me/us to some
additional information ?
This is not directly related to the OP's issue, but I'm doing a lot of
AAA related stuff these days,
On Tue, Oct 21, 2008 at 1:58 PM, Rodney Ramos [EMAIL PROTECTED] wrote:
Hi, Eric. Thank you for your answers.
I´ve tried to do what you said, setting the directive AuthBasicProvider as
below:
AuthBasicProvider ldap file
But the problem is the same. Apache doen´t check the flat file, as you
Eric Covener wrote:
On Tue, Oct 21, 2008 at 1:58 PM, Rodney Ramos [EMAIL PROTECTED] wrote:
Hi, Eric. Thank you for your answers.
I´ve tried to do what you said, setting the directive AuthBasicProvider as
below:
AuthBasicProvider ldap file
But the problem is the same. Apache doen´t check the
On Tue, Oct 21, 2008 at 1:43 PM, André Warnier [EMAIL PROTECTED] wrote:
Eric Covener wrote:
On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
referrals.
Eric, can you elaborate a bit on that, or direct me/us to some additional
information ?
This is not directly related
Thanks.
That info might very well save me a couple of days of scratching my head
some time soon.
André
Eric Covener wrote:
On Tue, Oct 21, 2008 at 1:43 PM, André Warnier [EMAIL PROTECTED] wrote:
Eric Covener wrote:
On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
Hello Apache gurus,
I am having trouble getting mod_authnz_ldap to work in Apache.
httpd-2.2.9 running on Solaris 10 (in a non-global zone)
Here is my configure line:
./configure --prefix=/svn/builds/apache-2.2.9_20081009 --enable-logio
--enable-proxy --enable-proxy-http --enable-rewrite
Hi,
is there a way to clear my cache on my browser through httpd?
my senario, i have a folder that was secured by mod_authnz_ldap
through .htaccess, when i visit my webpage and it brought me to a
folder which is secure through .htaccess, it pops-up an authentication
and after i close my browser
Eric Covener wrote:
On Jan 31, 2008 12:59 PM, Eric Covener [EMAIL PROTECTED] wrote:
On Jan 31, 2008 12:16 PM, jehan procaccia
[EMAIL PROTECTED] wrote:
I do enter in mod_auth_cas for authn, then authz is supposed to be
carried out from mod_authnz_ldap,
Peaking at the source, it
hello,
in the doc:
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#exposed
it is said that all LDAP attributes returned by the query are placed
in the environment, using environment variables with the prefix
AUTHENTICATE_
however I cannot see these AUTHENTICATE_attr=value in my
On Thu, 31 Jan 2008 16:11:05 +0100
jehan procaccia [EMAIL PROTECTED] wrote:
I'am on centos5 with httpd-2.2.3
Read the CHANGES file. I don't recollect exactly when it happened,
but I'm pretty sure those variables were added more recently than
2.2.3.
--
Nick Kew
Application Development with
Eric Covener wrote:
On Jan 31, 2008 10:11 AM, jehan procaccia
[EMAIL PROTECTED] wrote:
hello,
however I cannot see these AUTHENTICATE_attr=value in my
environement variable !?
my .htaccess file contains
Limit GET POST
AuthType CAS
AuthName INT auth
AuthLDAPUrl
Nick Kew wrote:
On Thu, 31 Jan 2008 16:11:05 +0100
jehan procaccia [EMAIL PROTECTED] wrote:
I'am on centos5 with httpd-2.2.3
Read the CHANGES file. I don't recollect exactly when it happened,
but I'm pretty sure those variables were added more recently than
2.2.3.
I can't see
On Jan 31, 2008 12:16 PM, jehan procaccia
[EMAIL PROTECTED] wrote:
I do enter in mod_auth_cas for authn, then authz is supposed to be
carried out from mod_authnz_ldap,
Peaking at the source, it looks like mod_authnz_ldap only sets this
when it authenticates (checks the password) for a request,
On Jan 31, 2008 12:59 PM, Eric Covener [EMAIL PROTECTED] wrote:
On Jan 31, 2008 12:16 PM, jehan procaccia
[EMAIL PROTECTED] wrote:
I do enter in mod_auth_cas for authn, then authz is supposed to be
carried out from mod_authnz_ldap,
Peaking at the source, it looks like mod_authnz_ldap only
On 10/17/07, Alexander Fortin [EMAIL PROTECTED] wrote:
IfModule util_ldap.c
LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem
LDAPTrustedMode SSL
LDAPVerifyServerCert off
/IfModule
Wireshark will format the initial stages of the handshake pretty
nicely,
Eric Covener wrote:
On 10/17/07, Alexander Fortin [EMAIL PROTECTED] wrote:
IfModule util_ldap.c
LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem
LDAPTrustedMode SSL
LDAPVerifyServerCert off
/IfModule
Wireshark will format the initial stages of the handshake
From: Tony Stevenson [EMAIL PROTECTED]
To: users@httpd.apache.org
Sent: Tuesday, October 2, 2007 9:08:00 AM
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Nick Kew wrote:
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese [EMAIL PROTECTED] wrote:
Is there someone I
]
To: users@httpd.apache.org
Sent: Monday, October 1, 2007 8:02:43 AM
Subject: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Greetings-
I need to get mod_authnz_ldap and Lotus Domino's decrepid ldap server
working together. I get an operation failure with any query run through apache
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese [EMAIL PROTECTED] wrote:
Is there someone I can specifically ask about mod_authnz_ldap and
Domino?
Seems unlikely.
- Original Message
Looks as if it might have been on-topic here, if it had been
specific enough to answer
Nick Kew wrote:
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese [EMAIL PROTECTED] wrote:
Is there someone I can specifically ask about mod_authnz_ldap and
Domino?
Seems unlikely.
Very, but I will try.
Can you show us some specific example of failures, log results etc?
Errorlog,
On 10/2/07, Peter Milanese [EMAIL PROTECTED] wrote:
Is there someone I can specifically ask about mod_authnz_ldap and Domino?
I saw someone in the past had the same issue, but do not know if and how it
was resolved. Can't go live with a new box without it!
Thanks much-
You probably need to
: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Nick Kew wrote:
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese [EMAIL PROTECTED] wrote:
Is there someone I can specifically ask about mod_authnz_ldap and
Domino?
Seems unlikely.
Very, but I will try.
Can you show us some
Greetings-
I need to get mod_authnz_ldap and Lotus Domino's decrepid ldap server
working together. I get an operation failure with any query run through apache.
Otherwise, the same LDAPURL works in a browser.
Does anyone know of the specific issue pretaining to Domino's ldap
James,
Thanks for the response, I quite agree this is something that I would
logically expect to be included. Would you mind posting your patch?
Even if it doesn't get merged I'm sure I'm not the only one who needs
to know this information. It makes little sense to have all these
Is there a way to acquire the group via code, like a server
environment variable (e.g., like REMOTE_USER) of the group authorized
by a require ldap-group (or any group)? This would be extremely
helpful in applications where a page would have features depending on
the access level of the
Hi Richard,
On 29/09/2007, Richard N. Fogle [EMAIL PROTECTED] wrote:
Is there a way to acquire the group via code, like a server
environment variable (e.g., like REMOTE_USER) of the group authorized
by a require ldap-group (or any group)? This would be extremely
I agree that it would be
The current documentation for the AuthLDAPUrl directive includes
the following:
ldap://host:port/basedn?attribute?scope?filter
attribute The attribute to search for. Although RFC 2255 allows a
comma-separated list of attributes, only the first attribute
will be used, no
hi all,I'm trying to use this module to authenticate a web site here from my ldap server. When accessing the site, it pops up the authentication dialog, takes my info and then rather than letting me into the site, sends me to the authentication dialog again (endlessly).The authentication appears
Hi Im currently running Apache 2.2 and have loaded Mod_authnz_ldap module to authenticate users against a microsoft active directory. I can succesfully bind to the LDAP server and authenticate a user as long as i specify a specific OU
i.e if my AuthLDAPURL directive says AuthLDAPURL
ts of hair by now
without their help...
Von: Ext_Krueger, Philipp
[mailto:[EMAIL PROTECTED] Gesendet: Montag, 28. August 2006
15:57An: users@httpd.apache.orgBetreff: [EMAIL PROTECTED]
Mod_authnz_ldap with apache 2.2.0 (suse 10.1)
Hello!
I hope somebody can help me, last week I've set up an
Title: Mod_authnz_ldap with apache 2.2.0 (suse 10.1)
Hello!
I hope somebody can help me, last week I've set up an apache 2.0.x on windows and installed the mod_auth_ldap from http://www.muquit.com/muquit/software/mod_auth_ldap/mod_auth_ldap_cache.html and I've managed to get it to work.
with
DSO?
Again, thank you very much for your help Elaine,
Micahel DeClerck
From: elaine [mailto:[EMAIL PROTECTED]
Sent: Friday, July 28, 2006 3:03 PM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
Declerck Michael-W30479
Declerck Michael-W30479 wrote:
Elaine,
Thank you for your help!
I had already installed Apache once without any modules, so I had
apr-utils installed.
Here's what I use (both under Solaris and RHEL4):
* Creat a myconfigure.sh script with the following:
---BEGIN---
#! /bin/sh
#
] Error 1
I have very little idea of what to do.
Any help at all is appreciated.
-Original Message-
From: Declerck Michael-W30479
Sent: Thursday, July 20, 2006 2:31 PM
To: users@httpd.apache.org
Subject: RE: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
Kenneth,
Thank you for the redirect
PROTECTED]
Sent: Friday, July 28, 2006 8:12 AMTo:
users@httpd.apache.orgSubject: Re: [EMAIL PROTECTED] mod_authnz_ldap for
2.2.2
Michael,Do you have any previous apr installation ? If
you don't have, try to use the bundled apr and apr-util that comes with the
apache httpd source releases. To do
installed will be
availabe to both installs?
Any advice is appreciated,
Micahel
From: Declerck Michael-W30479 Sent:
Friday, July 28, 2006 11:10 AMTo:
users@httpd.apache.orgSubject: RE: [EMAIL PROTECTED] mod_authnz_ldap for
2.2.2
I tried the extra --with-ldap-include and --with-ldap-lib
flags, but I ge
defined reference to
`apr_ldap_url_parse'
modules/aaa/.libs/libmod_authnz_ldap.a(mod_authnz_ldap.o): In function
`mod_auth_ldap_parse_url':mod_authnz_ldap.c:(.text+0x1e84): undefined
reference to `apr_ldap_url_parse'
collect2: ld returned 1 exit status
make[1]: *** [httpd] Error 1
I have very
: Declerck Michael-W30479
Sent: Thursday, July 20, 2006 2:31 PM
To: users@httpd.apache.org
Subject: RE: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
Kenneth,
Thank you for the redirect to /usr/lib/apache2/modules/, I was wondering
why none of the modules had the .so extension in the mods-available
I using Ubuntu 6.06
Does anyone know how
to define where the LDAP libraries are when compiling the mod_authnz_ldap module
statically into Apache2.2?
I get an error
"configure: error: could not find an LDAP library".
I am using the
configure line: "./configure --with-ldap --enable-ldap
is always appreciated.
Michael DeClerck
-Original Message-
From: Kenneth Stueflotten Svee [mailto:[EMAIL PROTECTED]
Sent: Thursday, July 20, 2006 3:43 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
[ Declerck Michael-W30479 ]
Hello,
I installed
Hello,
I installed
Apache2.2.2several weeks ago on my Ubuntu Linux machine (whichis
similar toDebian), and also on my Windows XP machine.
I went tomy
/etc/apache2/mods-available/ directory lookingforthe mod_authnz_ldap
package which (according to http://httpd.apache.org/docs/2.2/mod/)
51 matches
Mail list logo
