LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page Problem authenticating Apache - LDAP - Active Directory using a AD group
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 11-10-2007, 06:53 AM   #1
mrcoffee11
LQ Newbie
 
Registered: Jul 2006
Posts: 18

Rep: Reputation: 0
Problem authenticating Apache - LDAP - Active Directory using a AD group

Hi,

Maybe someone overhere can help me with this issue. I'm trying to authenticate an apache website against an Active Directory LDAP service. I already got it working properly when I want to check if a user is in a certain container in the AD. But I want to change it to using an AD group because users from other containers also need access.

I run into the problem that I can log in but I almost always get a webpage with an error message: "internal server error". After refreshing the page a lot of times I get to see the correct webpage. Then, after a couple of minutes happily clicking, again the website shows an "internal server error" again. So something is going wrong, but I don't know what. It's strange cause authenticating users in a container works without any problems.

Fedora7, apache 2.2, AD windows 2003

I'm not sure it's an apache configuration error but here is my config:

Group access (this one gives me problems):

<Directory "/usr/local/nagios/sbin">
Options Indexes FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all

AuthBasicProvider ldap
AuthType Basic
AuthzLDAPAuthoritative on
AuthName "Nagios Access"
AuthLDAPURL "ldap://ezhdc01:389/dc=elisabeth,dc=nl?sAMAccountName?sub?(objectClass =*)"
#AuthLDAPURL "ldap://ezhdc01:389/dc=elisabeth,dc=nl?sAMAccountName?sub?(objectCateg ory=person)"
AuthLDAPBindDN "cn=sa_nagios,ou=Service Accounts,ou=admins,dc=elisabeth,dc=nl"
AuthLDAPBindPassword "**********"
Require ldap-group cn=APP_Nagios,ou=Applicaties,ou=Groups,ou=EZH,dc=e lisabeth,dc=nl
#Require valid-user
#AuthLDAPGroupAttributeIsDN on
</Directory>


Users in a certain container example (this one works alright and gives me no problem):

<Directory "/usr/local/nagios/sbin">
AuthzLDAPAuthoritative on
AuthName "Nagios Access"
Options Indexes FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all
Require valid-user
AuthLDAPURL "ldap://ezhdc01:389/ou=Users,ou=admins,dc=elisabeth,dc=nl?sAMAccountNa me?sub?(objectClass=*)"
AuthLDAPBindDN "cn=sa_nagios,ou=Service Accounts,ou=admins,dc=elisabeth,dc=nl"
AuthLDAPBindPassword "***********"
</Directory>

Anyone any ideas?
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
authenticating through one ldap server that uses other ldap servers & active director dreamm Linux - Server 1 02-21-2007 08:22 AM
Problem with LDAP auth and Active Directory Ryan100 Red Hat 1 10-27-2006 03:50 PM
Authenticating Against Active Directory LDAP Question pyotr1 Linux - General 2 09-30-2006 06:25 PM
Authenticating Linux Active Directory paul_mat Red Hat 2 09-30-2006 06:24 PM
Problems authenticating to Active Directory eantoranz Linux - Networking 3 08-02-2005 04:11 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 08:42 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration