Bug#397774: apache2.2-common: Support mod_auth_ldap to mod_aunthz_ldap migration. Or at least warn!

To: 397774@bugs.debian.org
Subject: Bug#397774: apache2.2-common: Support mod_auth_ldap to mod_aunthz_ldap migration. Or at least warn!
From: Markus Hochholdinger <Markus@hochholdinger.net>
Date: Wed, 13 Dec 2006 18:08:09 +0100
Message-id: <[🔎] 200612131808.12523.Markus@hochholdinger.net>
Reply-to: Markus Hochholdinger <Markus@hochholdinger.net>, 397774@bugs.debian.org

Hi,

i also stumbled over this apache ldap feature. "require valid-user" only works 
if you set "AuthzLDAPAuthoritative off" (found in 
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html.en#reqvaliduser).

So my solutions looks as follows:
<Directory /xxx>
        AuthName "Password"

        AuthType Basic
        AuthBasicProvider ldap

        AuthLDAPUrl ldap://127.0.0.1:389/dc=dom,dc=com?uid?sub?(objectClass=*)
        AuthLDAPBindDN searchdn
        AuthLDAPBindPassword xxxx

        AuthzLDAPAuthoritative off
        require valid-user
</Directory>

Alternative you can use "require ldap-user thisuser onotheruser". require 
ldap-user without a username doesn't work!


-- 
greetings

eMHa

Attachment: pgpOF4meZdy5b.pgp
Description: PGP signature

Reply to:

Prev by Date: Helping with mod_perl 2.0.3
Next by Date: Bug#396631: Same problem with latest version of apache2/libapr1
Previous by thread: Helping with mod_perl 2.0.3
Next by thread: Bug#396631: Same problem with latest version of apache2/libapr1
Index(es):
- Date
- Thread