perfect! it worked (2.0.55, 2.2.2 with bundled SUN LDAP SDK,
OpenLDAP). thank you so much for the tip!
the network trace looks exactly the way it should (no reference record
returned by AD).
reading up on global catalog does not make it obvious that i should
have used it, especially since other
> Sent: Sunday, June 18, 2006 1:34 PM
> To: users@httpd.apache.org
> Subject: [EMAIL PROTECTED] Re: authentication problem with
> apache2 + ldap + active directory
>
> trying a few more things:
>
> compiled apache 2.2.2 with Sun Microsystems Inc. LDAP SDK
> that cam
trying a few more things:
compiled apache 2.2.2 with Sun Microsystems Inc. LDAP SDK that came
with solaris:
$ pkginfo -l SUNWlldap
PKGINST: SUNWlldap
NAME: LDAP Libraries
CATEGORY: system
ARCH: sparc
VERSION: 11.8.0,REV=2000.01.08.18.12
BASEDIR: /
VENDOR: Sun Microsyst
I made some progress:
after reading this post: http://tinyurl.com/rzjzf i have changed my config from
AuthLDAPURL
ldap://ad.host.name.com:389/DC=XYZ,DC=ABC,DC=com?sAMAccountName?sub?(objectClass=*)
to
AuthLDAPURL
ldap://ad.host.name.com:389/OU=BLAH2,DC=XYZ,DC=ABC,DC=com?sAMAccountName?sub?(o
to be a bit more specific, what i am not seeing is another bind
request to AD that looks like this:
---
Lightweight Directory Access Protocol
LDAP Message, Bind Request
Message Id: 1
Message Type: Bind Request (0x00)
Version: 3
DN: CN=Lastname\,
Firstname,OU
