Solved

LDAPS Config

Posted on 2008-06-09
3
859 Views
Last Modified: 2013-12-02
We have successfully configured and tested our SLES 10 server to authenticate LDAP.  Our problem lies in the Apache code on one our authenticating servers. We have the following in our httpd :


<Directory /var/www/html/Authent>
 AuthType Basic
 AuthName "Company Internal Server"
 AuthBasicProvider ldap
 AuthzLDAPAuthoritative On
 AuthLDAPURL ldaps://mail.company.com:636/ou=users,o=company?uid SSL
 AuthLDAPBindDN "cn=ldapproxy,o=company"
 require valid-user
</Directory>
 
The error we are receiving is :

[Mon Jun 09 15:41:54 2008] [warn] [client 66.105.XXX.XXX] [23743] auth_ldap authenticate: user testuser authentication failed; URI /Authent/ca_resume_test.php [LD
AP: ldap_simple_bind_s() failed][Can't contact LDAP server]

We believe the error may be related to a certificate issue but are unaware ofhow to determine this.



0
Comment
Question by:Primarisair
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 57

Expert Comment

by:giltjr
ID: 21750592
Have you tested without using SSL?  I would suggest that you try not using SSL.  Once you have that working then try SSL.
0
 

Author Comment

by:Primarisair
ID: 21753369
We have successfully completed the tests without SSL. What would the next step be in the SSL process. Do we transfer certificate? Does the code look correct?
0
 
LVL 57

Accepted Solution

by:
giltjr earned 125 total points
ID: 21753912
The code for SSL and non-SSL will be the same, except for the ldaps part.

Are you using a cert that is signed by a public CA, your own CA, or a self-signed cert?

If using a self-signed cert, then you need to import the public key of the server onto the client.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most ColdFusion developers get confused between the CFSet, Duplicate, and Structcopy methods of copying a Structure, especially which one to use when. This Article will explain the differences in the approaches with examples; therefore, after readin…
Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question