the 'user' is coming from mod_auth_kerb .
I am going to hack the code (mod_authnz_ldap) to strip off the
'@wherever' part .
Eric Covener wrote:
On Wed, Nov 19, 2008 at 2:06 PM, Minson, John M Mr ARMY GUEST
<[EMAIL PROTECTED]> wrote:
using 'snoop' I determined that the ldap modul
On Wed, Nov 19, 2008 at 2:06 PM, Minson, John M Mr ARMY GUEST
<[EMAIL PROTECTED]> wrote:
> using 'snoop' I determined that the ldap module is using a uid that looks
> like this
>
> [EMAIL PROTECTED]
>
> The 'someuser' portion is what is in lDAP .
>
> How do I pass just 'someuser' as the uid ?
That
using 'snoop' I determined that the ldap module is using a uid that
looks like this
[EMAIL PROTECTED]
The 'someuser' portion is what is in lDAP .
How do I pass just 'someuser' as the uid ?
I verified that '[EMAIL PROTECTED]' is contained in 'REMOTE_USER'
env variable
Eric Covener wrote:
On Wed, Nov 19, 2008 at 1:21 PM, Minson, John M Mr ARMY GUEST
<[EMAIL PROTECTED]> wrote:
> I'm trying to implement mod_authnz_ldap and get the following error
>
> auth_ldap authorise: User DN not found, ldap_search_ext_s() for user failed
>
> I have tried dozens of combinations of AuthLDAPUrl and A
I'm trying to implement mod_authnz_ldap and get the following error
auth_ldap authorise: User DN not found, ldap_search_ext_s() for user failed
I have tried dozens of combinations of AuthLDAPUrl and AuthLDAPBindDN
Is there anyway to get it to display the 'User DN' its trying to use ?
apache ha
Thank you, André.
That´s because I´m migrating an application from Apache 1.3 to Apache 2.
On Apache 1.3 I was used to Apache::DBI, Apache::AuthDBI, mod_perl,
mod_auth_ldap etc.
Everything worked fine, but
Thank you again.
Rodney.
On Wed, Oct 22, 2008 at 11:52 AM, André Warnier <[EMAIL
Rodney Ramos wrote:
Great! That´s it!
I´ve tried to use a user called "admin" that exists in the LDAP server.
So, to make the test, I´ve created a crazy username and put it into the flat
file, and it works!
The Apache tries to consult the flat file only if it doesn´t find the user
in the LDAP
Great! That´s it!
I´ve tried to use a user called "admin" that exists in the LDAP server.
So, to make the test, I´ve created a crazy username and put it into the flat
file, and it works!
The Apache tries to consult the flat file only if it doesn´t find the user
in the LDAP server.
Now, another
Thanks.
That info might very well save me a couple of days of scratching my head
some time soon.
André
Eric Covener wrote:
On Tue, Oct 21, 2008 at 1:43 PM, André Warnier <[EMAIL PROTECTED]> wrote:
Eric Covener wrote:
On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
re
On Tue, Oct 21, 2008 at 1:43 PM, André Warnier <[EMAIL PROTECTED]> wrote:
> Eric Covener wrote:
>>
>> On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
>> referrals.
>>
> Eric, can you elaborate a bit on that, or direct me/us to some additional
> information ?
> This is not dir
Eric Covener wrote:
On Tue, Oct 21, 2008 at 1:58 PM, Rodney Ramos <[EMAIL PROTECTED]> wrote:
Hi, Eric. Thank you for your answers.
I´ve tried to do what you said, setting the directive AuthBasicProvider as
below:
AuthBasicProvider ldap file
But the problem is the same. Apache doen´t check the
On Tue, Oct 21, 2008 at 1:58 PM, Rodney Ramos <[EMAIL PROTECTED]> wrote:
> Hi, Eric. Thank you for your answers.
>
> I´ve tried to do what you said, setting the directive AuthBasicProvider as
> below:
>
> AuthBasicProvider ldap file
>
> But the problem is the same. Apache doen´t check the flat file
Hi, Eric. Thank you for your answers.
I´ve tried to do what you said, setting the directive AuthBasicProvider as
below:
AuthBasicProvider ldap file
But the problem is the same. Apache doen´t check the flat file, as you can
see in the log below:
Eric Covener wrote:
On port 389, MSAD might send you on a lengthy wild goose-chase of LDAP
referrals.
Eric, can you elaborate a bit on that, or direct me/us to some
additional information ?
This is not directly related to the OP's issue, but I'm doing a lot of
AAA related stuff these days, an
On Tue, Oct 21, 2008 at 12:59 PM, Rodney Ramos <[EMAIL PROTECTED]> wrote:
> I´m trying to use the mod_authnz_ldap module to authenticate the users in a
> Microsoft AD LDAP Server, but I´m having a lot of problems.
>
> The only configuration that worked was:
>
> AuthName ""
> AuthType Basic
> Au
I´m trying to use the mod_authnz_ldap module to authenticate the users in a
Microsoft AD LDAP Server, but I´m having a lot of problems.
The only configuration that worked was:
AuthName ""
AuthType Basic
AuthBasicProvider ldap
AuthLDAPUrl "ldap://ldapserver:3268/dc=domain,dc=com?cn";
AuthLDAPB
Hello Apache gurus,
I am having trouble getting mod_authnz_ldap to work in Apache.
httpd-2.2.9 running on Solaris 10 (in a non-global zone)
Here is my configure line:
./configure --prefix=/svn/builds/apache-2.2.9_20081009 --enable-logio
--enable-proxy --enable-proxy-http --enable-rewrite --enabl
Hi,
is there a way to clear my cache on my browser through httpd?
my senario, i have a folder that was secured by mod_authnz_ldap
through .htaccess, when i visit my webpage and it brought me to a
folder which is secure through .htaccess, it pops-up an authentication
and after i close my browser a
Eric Covener wrote:
On Jan 31, 2008 12:59 PM, Eric Covener <[EMAIL PROTECTED]> wrote:
On Jan 31, 2008 12:16 PM, jehan procaccia
<[EMAIL PROTECTED]> wrote:
I do enter in mod_auth_cas for authn, then authz is supposed to be
carried out from mod_authnz_ldap,
Peaking at the source,
On Jan 31, 2008 12:59 PM, Eric Covener <[EMAIL PROTECTED]> wrote:
> On Jan 31, 2008 12:16 PM, jehan procaccia
> <[EMAIL PROTECTED]> wrote:
>
> > I do enter in mod_auth_cas for authn, then authz is supposed to be
> > carried out from mod_authnz_ldap,
>
> Peaking at the source, it looks like mod_auth
On Jan 31, 2008 12:16 PM, jehan procaccia
<[EMAIL PROTECTED]> wrote:
> I do enter in mod_auth_cas for authn, then authz is supposed to be
> carried out from mod_authnz_ldap,
Peaking at the source, it looks like mod_authnz_ldap only sets this
when it authenticates (checks the password) for a reque
Eric Covener wrote:
On Jan 31, 2008 10:11 AM, jehan procaccia
<[EMAIL PROTECTED]> wrote:
hello,
however I cannot see these "AUTHENTICATE_=value" in my
environement variable !?
my .htaccess file contains
AuthType CAS
AuthName "INT auth"
AuthLDAPUrl
"ldap://ldap4.int-evry.fr/dc=
Nick Kew wrote:
On Thu, 31 Jan 2008 16:11:05 +0100
jehan procaccia <[EMAIL PROTECTED]> wrote:
I'am on centos5 with httpd-2.2.3
Read the CHANGES file. I don't recollect exactly when it happened,
but I'm pretty sure those variables were added more recently than
2.2.3.
I can't see a
On Thu, 31 Jan 2008 16:11:05 +0100
jehan procaccia <[EMAIL PROTECTED]> wrote:
> I'am on centos5 with httpd-2.2.3
Read the CHANGES file. I don't recollect exactly when it happened,
but I'm pretty sure those variables were added more recently than
2.2.3.
--
Nick Kew
Application Development with
On Jan 31, 2008 10:11 AM, jehan procaccia
<[EMAIL PROTECTED]> wrote:
> hello,
> however I cannot see these "AUTHENTICATE_=value" in my
> environement variable !?
> my .htaccess file contains
>
>
> AuthType CAS
> AuthName "INT auth"
> AuthLDAPUrl
> "ldap://ldap4.int-evry.fr/dc=int-evry,dc=fr?ui
hello,
in the doc:
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#exposed
it is said that " all LDAP attributes returned by the query are placed
in the environment, using environment variables with the prefix
"AUTHENTICATE_"
however I cannot see these "AUTHENTICATE_=value" in my
en
Eric Covener wrote:
On 10/17/07, Alexander Fortin <[EMAIL PROTECTED]> wrote:
LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem
LDAPTrustedMode SSL
LDAPVerifyServerCert off
Wireshark will format the initial stages of the handshake pretty
nicely, you might se
On 10/17/07, Alexander Fortin <[EMAIL PROTECTED]> wrote:
>
>
> LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem
> LDAPTrustedMode SSL
> LDAPVerifyServerCert off
>
Wireshark will format the initial stages of the handshake pretty
nicely, you might see something
Hi guys.
I'm trying to enable SSL for LDAP authentication on a Debian Etch,
Apache version 2.2.3
The authentication/authorization without SSL directives is working
properly, but as soon as I try to enable the secure layer, I get this error:
[debug] mod_authnz_ldap.c(373): [18646] auth_ldap a
- Original Message
From: Tony Stevenson <[EMAIL PROTECTED]>
To: users@httpd.apache.org
Sent: Tuesday, October 2, 2007 9:08:00 AM
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Nick Kew wrote:
> On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
> Peter Milanese <[EMAIL PROTECTE
ber 2, 2007 12:08:00 PM
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Nick Kew wrote:
> On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
> Peter Milanese <[EMAIL PROTECTED]> wrote:
>
>> Is there someone I can specifically ask about mod_authnz_ldap and
>> Domino?
Nick Kew wrote:
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese <[EMAIL PROTECTED]> wrote:
Is there someone I can specifically ask about mod_authnz_ldap and
Domino?
Seems unlikely.
Very, but I will try.
Can you show us some specific example of failures, log results etc?
Errorlog, Do
On 10/2/07, Peter Milanese <[EMAIL PROTECTED]> wrote:
>
> Is there someone I can specifically ask about mod_authnz_ldap and Domino?
>
> I saw someone in the past had the same issue, but do not know if and how it
> was resolved. Can't go live with a new box without it!
>
> Thanks much-
You probably
On Tue, 2 Oct 2007 07:49:56 -0700 (PDT)
Peter Milanese <[EMAIL PROTECTED]> wrote:
> Is there someone I can specifically ask about mod_authnz_ldap and
> Domino?
Seems unlikely.
> - Original Message
Looks as if it might have been on-topic here, if it had been
specific enough to answer me
ROTECTED]>
To: users@httpd.apache.org
Sent: Monday, October 1, 2007 8:02:43 AM
Subject: [EMAIL PROTECTED] mod_authnz_ldap and Lotus Domino
Greetings-
I need to get mod_authnz_ldap and Lotus Domino's decrepid ldap server
working together. I get an operation failure with any query ru
Greetings-
I need to get mod_authnz_ldap and Lotus Domino's decrepid ldap server
working together. I get an operation failure with any query run through apache.
Otherwise, the same LDAPURL works in a browser.
Does anyone know of the specific issue pretaining to Domino's ldap
directory?
James,
Thanks for the response, I quite agree this is something that I would
logically expect to be included. Would you mind posting your patch?
Even if it doesn't get merged I'm sure I'm not the only one who needs
to know this information. It makes little sense to have all these
table
Hi Richard,
On 29/09/2007, Richard N. Fogle <[EMAIL PROTECTED]> wrote:
> Is there a way to acquire the group via code, like a server
> environment variable (e.g., like REMOTE_USER) of the group authorized
> by a require ldap-group (or any group)? This would be extremely
I agree that it would be
Is there a way to acquire the group via code, like a server
environment variable (e.g., like REMOTE_USER) of the group authorized
by a require ldap-group (or any group)? This would be extremely
helpful in applications where a page would have features depending on
the access level of the us
The current documentation for the AuthLDAPUrl directive includes
the following:
ldap://host:port/basedn?attribute?scope?filter
attribute The attribute to search for. Although RFC 2255 allows a
comma-separated list of attributes, only the first attribute
will be used, no m
hi all,I'm trying to use this module to authenticate a web site here from my ldap server. When accessing the site, it pops up the authentication dialog, takes my info and then rather than letting me into the site, sends me to the authentication dialog again (endlessly).The authentication appears t
Hi Im currently running Apache 2.2 and have loaded Mod_authnz_ldap module to authenticate users against a microsoft active directory. I can succesfully bind to the LDAP server and authenticate a user as long as i specify a specific OU
i.e if my AuthLDAPURL directive says AuthLDAPURL ldap://ms-m
ng out tufts of hair by now
without their help...
Von: Ext_Krueger, Philipp
[mailto:[EMAIL PROTECTED] Gesendet: Montag, 28. August 2006
15:57An: users@httpd.apache.orgBetreff: [EMAIL PROTECTED]
Mod_authnz_ldap with apache 2.2.0 (suse 10.1)
Hello!
I hope somebody can help me, last week I'
Title: Mod_authnz_ldap with apache 2.2.0 (suse 10.1)
Hello!
I hope somebody can help me, last week I've set up an apache 2.0.x on windows and installed the mod_auth_ldap from http://www.muquit.com/muquit/software/mod_auth_ldap/mod_auth_ldap_cache.html and I've managed to get it to work. Now
Declerck Michael-W30479 wrote:
> Elaine,
> Thank you for your help!
>
> I had already installed Apache once without any modules, so I had
> apr-utils installed.
>
>
>
Here's what I use (both under Solaris and RHEL4):
* Creat a myconfigure.sh script with the following:
---BEGIN---
#! /bi
\
> "--with-ldap" \
What is the --enable-so flag for?
Is the --with-ssl flag pointing to the ssl libraries?
Why is --enable-ssl set to shared? Does that have something to do with
DSO?
Again, thank you very much for your help Elaine,
Micahel DeClerck
________
From
.data+0xe6c): undefined reference to
`apr_ldap_url_parse_ext'
server/.libs/libmain.a(exports.o):(.data+0xe70): undefined reference to
`apr_ldap_url_parse'
modules/aaa/.libs/libmod_authnz_ldap.a(mod_authnz_ldap.o): In function
`mod_auth_ldap_parse_url':mod_authnz_ldap.c:(.text+0x1e84):
les I installed will be
availabe to both installs?
Any advice is appreciated,
Micahel
From: Declerck Michael-W30479 Sent:
Friday, July 28, 2006 11:10 AMTo:
users@httpd.apache.orgSubject: RE: [EMAIL PROTECTED] mod_authnz_ldap for
2.2.2
I tried the extra --with-ldap-include and --with-ldap-l
elaine [mailto:[EMAIL PROTECTED]
Sent: Friday, July 28, 2006 8:12 AMTo:
users@httpd.apache.orgSubject: Re: [EMAIL PROTECTED] mod_authnz_ldap for
2.2.2
Michael,Do you have any previous apr installation ? If
you don't have, try to use the bundled apr and apr-util that comes with the
rl_parse'
collect2: ld returned 1 exit status
make[1]: *** [httpd] Error 1
I have very little idea of what to do.
Any help at all is appreciated.
-Original Message-
From: Declerck Michael-W30479
Sent: Thursday, July 20, 2006 2:31 PM
To: users@httpd.apache.org
Subject: RE: [EMAIL PROTEC
Any help at all is appreciated.
-Original Message-
From: Declerck Michael-W30479
Sent: Thursday, July 20, 2006 2:31 PM
To: users@httpd.apache.org
Subject: RE: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
Kenneth,
Thank you for the redirect to /usr/lib/apache2/modules/, I was wondering
wh
I using Ubuntu 6.06
Does anyone know how
to define where the LDAP libraries are when compiling the mod_authnz_ldap module
statically into Apache2.2?
I get an error
"configure: error: could not find an LDAP library".
I am using the
configure line: "./configure --with-ldap --enable-ldap
So i've set up the simplest-possible mod_authnz_ldap vs. Lotus Domino
authentication configuration, and it doesn't work - which over the years
i've come to expect from Domino, but i don't think it's at fault this
time. I'm running Apache & Domino on the same machine, & getting the
infamous "Operat
always appreciated.
Michael DeClerck
-Original Message-
From: Kenneth Stueflotten Svee [mailto:[EMAIL PROTECTED]
Sent: Thursday, July 20, 2006 3:43 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_authnz_ldap for 2.2.2
[ Declerck Michael-W30479 ]
> Hello,
> I ins
[ Declerck Michael-W30479 ]
> Hello,
> I installed Apache2.2.2 several weeks ago on my Ubuntu Linux machine
> (which is similar to Debian), and also on my Windows XP machine. I
> went to my /etc/apache2/mods-available/ directory looking for the
> mod_authnz_ldap package which (according to
> http:
Hello,
I installed
Apache2.2.2 several weeks ago on my Ubuntu Linux machine (which is
similar to Debian), and also on my Windows XP machine.
I went to my
/etc/apache2/mods-available/ directory looking for the mod_authnz_ldap
package which (according to http://httpd.apache.org/docs/2.2/mod/)
Hi.
I have an almost working apache 2.2 installation on Solaris 10 with
mod_authnz_ldap
enabled and configured:
-Logging in with correct user/password => Everything works fine. LDAP
Bind/Log-in successful.
-Logging in with non-existing LDAP-user, re-opens the browser login
window => OK
-Logg
57 matches
Mail list logo
