[users@httpd] webpage user authentication using LDAP (only through TLS )

Thu, 12 Jan 2006 05:24:28 -0800 

Hi,
I would like to authenticate users using LDAP directory server (only through TLS connection) to access a web url http://host.domain.com/test. 


I have placed a .htaccess file in the webroot/test directory. This file 
contains


AuthType Basic
AuthName "Password Required"
AuthLDAPURL ldap://host.domain.com:389/dc=domain,dc=com?uid
require user test


In plain mode (setted the LDAP server side to support plain 
authentication) authentication, I got authenticated and it is showing 
the webpage.



In TLS mode (setted the LDAP server side to support only TLS 
authentication) authentication, I am not getting authenticated. It looks 
the apache server is not initialising the tls connection. Can somebody 
tell me what should I enable?


The apache error.log is showing as below,
-----------------------------------------------------------------------------------------------------------------------------------------------------------

[Thu Jan 12 17:39:13 2006] [debug] mod_auth_ldap.c(337): [client 
192.168.0.2] [11233] auth_ldap authenticate: using URL 
ldap://host.domain.com:389/dc=domain,dc=com?uid
[Thu Jan 12 17:39:13 2006] [warn] [client 192.168.0.2] [11233] auth_ldap 
authenticate: user test authentication failed; URI /test/ 
[ldap_search_ext_s() for user failed][Confidentiality required]

-----------------------------------------------------------------------------------------------------------------------------------------------------------


Note: The command " *ldapsearch -h host.domain.com -Z -b 
"dc=domain,dc=com"*" is giving the entries of the LDAP server 
successfully. It means the TLS option is working with the server.


The Version details are,

OS              :     Gentoo
Apache          :     2.0.55
mod_auth_ldap   :     3.3    (This has installed the mod_ldap module)

If somebody helps me would be grateful to you.


Thanks & Regards,
Muthu.


       


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]















    











					Reply via email to