Once I enable OPenLDAP authentication I cannot launch any cgi scripts.  These 
scripts work find without any authentication.

I have set loglevel to debug and get this error:

[Wed Mar 26 07:28:35 2014] [info] Initial (No.1) HTTPS request received for 
child 0 (server cfallotmentlisting.ssc-spc.gc.ca:443)
[Wed Mar 26 07:28:35 2014] [debug] mod_authnz_ldap.c(403): [client 
10.17.12.249] [12779700] auth_ldap authenticate: using URL 
ldap://cfallotmentlisting.ssc-spc.gc.ca/"o=gc,c=ca"?uid?sub, referer: 
https://cfallotmentlisting.ssc-spc.gc.ca/dnd-admin-cgi-bin/addUser.pl?app=dnd
[Wed Mar 26 07:28:35 2014] [info] [client 10.17.12.249] [12779700] auth_ldap 
authenticate: user gaberb authentication failed; URI 
/dnd-admin-cgi-bin/ldapNamSrch.pl [ldap_search_ext_s() for user failed][Invalid 
DN syntax], referer: 
https://cfallotmentlisting.ssc-spc.gc.ca/dnd-admin-cgi-bin/addUser.pl?app=dnd
[Wed Mar 26 07:28:35 2014] [debug] ssl_engine_kernel.c(1910): OpenSSL: Write: 
SSL negotiation finished successfully

Here is the relevant section from the httpd.conf

<Directory "/usr/local/apache2/dnd-admin-cgi-bin">
    AllowOverride None
    Options None
    Order allow,deny
    Allow from all
    AuthType basic
    AuthName "Administrator Authentication"
    AuthBasicProvider ldap
    AuthLDAPURL ldap://cfallotmentlisting.ssc-spc.gc.ca/"o=gc,c=ca"?uid?sub
    Require ldap-group cn=dnd-admins,o=gc,c=ca
</Directory>

                Thanks.

Reply via email to