On 22 Apr 2003, axacheng wrote: > I am running apache 1.3.26, apache-ssl 1.3.26 on Debian Woody 3.0r1. > The reason is that I think a user should not type his LDAP account > and password when the connection is not secure. Any comment is > appreciated :)
Try the following to redirect your users to the secure version of the page: SSLRequireSSL ErrorDocument 403 https://www.domain.com However, it depends if the authentication is done before or after checking SSL. I've never done this with HTTP authentication. Oliver
