Hi,
I would like to authenticate users using LDAP directory server (only
through TLS connection) to access a web url http://host.domain.com/test.
I have placed a .htaccess file in the webroot/test directory. This file
contains
AuthType Basic
AuthName "Password Required"
AuthLDAPURL ldap://host.domain.com:389/dc=domain,dc=com?uid
require user test
In plain mode (setted the LDAP server side to support plain
authentication) authentication, I got authenticated and it is showing
the webpage.
In TLS mode (setted the LDAP server side to support only TLS
authentication) authentication, I am not getting authenticated. It looks
the apache server is not initialising the tls connection. Can somebody
tell me what should I enable?
The apache error.log is showing as below,
-----------------------------------------------------------------------------------------------------------------------------------------------------------
[Thu Jan 12 17:39:13 2006] [debug] mod_auth_ldap.c(337): [client
192.168.0.2] [11233] auth_ldap authenticate: using URL
ldap://host.domain.com:389/dc=domain,dc=com?uid
[Thu Jan 12 17:39:13 2006] [warn] [client 192.168.0.2] [11233] auth_ldap
authenticate: user test authentication failed; URI /test/
[ldap_search_ext_s() for user failed][Confidentiality required]
-----------------------------------------------------------------------------------------------------------------------------------------------------------
Note: The command " *ldapsearch -h host.domain.com -Z -b
"dc=domain,dc=com"*" is giving the entries of the LDAP server
successfully. It means the TLS option is working with the server.
The Version details are,
OS : Gentoo
Apache : 2.0.55
mod_auth_ldap : 3.3 (This has installed the mod_ldap module)
If somebody helps me would be grateful to you.
Thanks & Regards,
Muthu.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]