Solved

LDAPS Config

Posted on 2008-06-09
3
853 Views
Last Modified: 2013-12-02
We have successfully configured and tested our SLES 10 server to authenticate LDAP.  Our problem lies in the Apache code on one our authenticating servers. We have the following in our httpd :


<Directory /var/www/html/Authent>
 AuthType Basic
 AuthName "Company Internal Server"
 AuthBasicProvider ldap
 AuthzLDAPAuthoritative On
 AuthLDAPURL ldaps://mail.company.com:636/ou=users,o=company?uid SSL
 AuthLDAPBindDN "cn=ldapproxy,o=company"
 require valid-user
</Directory>
 
The error we are receiving is :

[Mon Jun 09 15:41:54 2008] [warn] [client 66.105.XXX.XXX] [23743] auth_ldap authenticate: user testuser authentication failed; URI /Authent/ca_resume_test.php [LD
AP: ldap_simple_bind_s() failed][Can't contact LDAP server]

We believe the error may be related to a certificate issue but are unaware ofhow to determine this.



0
Comment
Question by:Primarisair
  • 2
3 Comments
 
LVL 57

Expert Comment

by:giltjr
ID: 21750592
Have you tested without using SSL?  I would suggest that you try not using SSL.  Once you have that working then try SSL.
0
 

Author Comment

by:Primarisair
ID: 21753369
We have successfully completed the tests without SSL. What would the next step be in the SSL process. Do we transfer certificate? Does the code look correct?
0
 
LVL 57

Accepted Solution

by:
giltjr earned 125 total points
ID: 21753912
The code for SSL and non-SSL will be the same, except for the ldaps part.

Are you using a cert that is signed by a public CA, your own CA, or a self-signed cert?

If using a self-signed cert, then you need to import the public key of the server onto the client.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Join & Write a Comment

Over the last year I have answered a couple of basic URL rewriting questions several times so I thought I might as well have a stab at: explaining the basics, providing a few useful links and consolidating some of the most common queries into a sing…
Introduction This article explores the design of a cache system that can improve the performance of a web site or web application.  The assumption is that the web site has many more “read” operations than “write” operations (this is commonly the ca…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now