Apache 2.2 with mod_authnz_ldap APR build with MS LDAP SDK doesn't authenticate to OpenLDAP 2.2.29.
This is a discussion on Apache 2.2 with mod_authnz_ldap APR build with MS LDAP SDK doesn't authenticate to OpenLDAP 2.2.29. within the Windows Web Servers forums, part of the Web Server and Related Forums category; I configured Apache 2.2 on Windows XP to authenticate into OpenLDAP Server 2.2.29 installed on the same ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-09-2007
|
|||
|
|||
Apache 2.2 with mod_authnz_ldap APR build with MS LDAP SDK doesn't authenticate to OpenLDAP 2.2.29.
I configured Apache 2.2 on Windows XP to authenticate into OpenLDAP
Server 2.2.29 installed on the same Windows XP machine. However, I am not able to access LDAP solution. Are there any known issues with this kind of setup. Thanks in advance LoadModule ldap_module modules/mod_ldap.so LoadModule authnz_ldap_module modules/mod_authnz_ldap.so LDAPSharedCacheSize 200000 LDAPCacheEntries 1024 LDAPCacheTTL 600 LDAPOpCacheEntries 1024 LDAPOpCacheTTL 600 <Location /svnrepos> AuthType Basic AuthName "SVN Repository" AuthBasicProvider ldap #AuthLDAPAuthoritative on AuthLDAPURL "ldap://localhost:389/ou=people,ou=authnz,dc=authnz,dc=com? uid?sub?(objectclass=*)" AuthLDAPBindDN "cn=Domain Admin,dc=airius,dc=com" AuthLDAPBindPassword test123 require valid-user DAV svn SVNPath C:\Software\svn-win32-1.4.3\svnrepos </Location> Whenever, I access the url http://localhost/svnrepos, I get an error message [Thu Feb 08 16:03:06 2007] [notice] Server built: Jan 9 2007 23:17:20 [Thu Feb 08 16:03:06 2007] [notice] Parent: Created child process 1132 [Thu Feb 08 16:03:06 2007] [debug] mpm_winnt.c(481): Parent: Sent the scoreboard to the child [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1315): [1132] ldap cache: Setting shared memory cache size to 200000 bytes. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1387): [1132] ldap cache: Setting search cache size to 1024 entries. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1363): [1132] ldap cache: Setting cache TTL to 600000000 microseconds. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1432): [1132] ldap cache: Setting operation cache size to 1024 entries. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1408): [1132] ldap cache: Setting operation cache TTL to 600000000 microseconds. [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(870): [1132] auth_ldap url parse: `ldap://localhost:389/ou=people,dc=airius,dc=com' [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(879): [1132] auth_ldap url parse: Host: localhost:389 [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(881): [1132] auth_ldap url parse: Port: 389 [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(883): [1132] auth_ldap url parse: DN: ou=people,dc=airius,dc=com [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(885): [1132] auth_ldap url parse: attrib: (null) [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(887): [1132] auth_ldap url parse: scope: base [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(892): [1132] auth_ldap url parse: filter: (null) [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(972): LDAP: auth_ldap not using SSL connections [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1315): [1132] ldap cache: Setting shared memory cache size to 200000 bytes. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1387): [1132] ldap cache: Setting search cache size to 1024 entries. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1363): [1132] ldap cache: Setting cache TTL to 600000000 microseconds. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1432): [1132] ldap cache: Setting operation cache size to 1024 entries. [Thu Feb 08 16:03:06 2007] [debug] util_ldap.c(1408): [1132] ldap cache: Setting operation cache TTL to 600000000 microseconds. [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(870): [1132] auth_ldap url parse: `ldap://localhost:389/ou=people,dc=airius,dc=com? uid?sub?(objectclass=*)' [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(879): [1132] auth_ldap url parse: Host: localhost:389 [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(881): [1132] auth_ldap url parse: Port: 389 [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(883): [1132] auth_ldap url parse: DN: ou=people,dc=airius,dc=com [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(885): [1132] auth_ldap url parse: attrib: uid [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(887): [1132] auth_ldap url parse: scope: sub [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(892): [1132] auth_ldap url parse: filter: (null) [Thu Feb 08 16:03:06 2007] [debug] mod_authnz_ldap.c(972): LDAP: auth_ldap not using SSL connections [Thu Feb 08 16:03:06 2007] [info] APR LDAP: Built with Microsoft Corporation. LDAP SDK [Thu Feb 08 16:03:06 2007] [info] LDAP: SSL support unavailable: LDAP: CA certificates cannot be set using this method, as they are stored in the registry instead. [Thu Feb 08 16:03:06 2007] [notice] Child 1132: Child process is running [Thu Feb 08 16:03:06 2007] [debug] mpm_winnt.c(402): Child 1132: Retrieved our scoreboard from the parent. [Thu Feb 08 16:03:06 2007] [info] Parent: Duplicating socket 208 and sending it to child process 1132 [Thu Feb 08 16:03:06 2007] [debug] mpm_winnt.c(599): Parent: Sent 1 listeners to child 1132 [Thu Feb 08 16:03:06 2007] [debug] mpm_winnt.c(558): Child 1132: retrieved 1 listeners from parent [Thu Feb 08 16:03:06 2007] [notice] Child 1132: Acquired the start mutex. [Thu Feb 08 16:03:06 2007] [notice] Child 1132: Starting 250 worker threads. [Thu Feb 08 16:03:06 2007] [notice] Child 1132: Starting thread to listen on port 80. [Thu Feb 08 16:03:30 2007] [debug] mod_authnz_ldap.c(376): [client 127.0.0.1] [1132] auth_ldap authenticate: using URL ldap://localhost: 389/ou=people,dc=airius,dc=com [Thu Feb 08 16:03:30 2007] [warn] [client 127.0.0.1] [1132] auth_ldap authenticate: user devuser authentication failed; URI /svnrepos [ldap_search_ext_s() for user failed][Protocol Error] |
|
03-08-2007
|
|||
|
|||
|
Re: Apache 2.2 with mod_authnz_ldap APR build with MS LDAP SDK doesn't authenticate to OpenLDAP 2.2.29.
On Feb 8, 8:30 pm, aut...@gmail.com wrote:
> I configured Apache 2.2 on Windows XP to authenticate into OpenLDAP > Server 2.2.29 installed on the same Windows XP machine. However, I am > not able to access LDAP solution. Are there any known issues with > this kind of setup. I am seeing the same problem. Windows XP apache_2.0.59-win32-x86-no_ssl.msi openldap-2.2.29-db-4.3.29-openssl-0.9.8a-win32 Error from apache error.log: [Thu Mar 08 13:57:10 2007] [warn] [client 127.0.0.1] [236] auth_ldap authenticate: user adam authentication failed; URI /svn/repo/ [ldap_search_ext_s() for user failed][Protocol Error] Relevant text from httpd.conf <Location /svn> DAV svn # Absolute disk path of SVN parent directory (containing all SVN repositories) SVNParentPath /SVN AllowOverride None order allow,deny allow from all AuthName "LDAP Auth Repository" AuthType Basic AuthLDAPUrl ldap://127.0.0.1/dc=example,dc=org?cn Require valid-user </Location> Regards, Adam |
|
03-10-2007
|
|||
|
|||
|
Re: Apache 2.2 with mod_authnz_ldap APR build with MS LDAP SDK doesn't authenticate to OpenLDAP 2.2.29.
> [Thu Feb 08 16:03:30 2007] [warn] [client 127.0.0.1] [1132] auth_ldap
> authenticate: user devuser authentication failed; URI /svnrepos > [ldap_search_ext_s() for user failed][Protocol Error] Same problem here. I'm running Apache on a Windows machine, and I've tried several different "versions" of this apache module from various sources:xammp, apache.org, etc. and I'm getting the exact same error every time. I'm trying to access an OpenLDAP 2.2.23 repository I'm not finding ANY help on the [Protocol Error] message, can someone please help? THANKS! -ZacWolf |
Linear Mode
