Questions tagged [mod-auth-ldap]

41 questions
12
votes
3 answers

Dynamically Authenticate Apache with LDAP Based on Request String?

It is possible to use a portion of the request URI as an input into mod_authnz_ldap's Require ldap-group directive? I'm trying to dynamically check access to a bunch of different project directories, all under http://testserver.com/projects/, such…
Chris
  • 405
  • 4
  • 8
5
votes
1 answer

Debugging a timeout with ldap auth on apache

I'm trying to debug a timeout problem I have with Apache, for some months now. The pattern looks like this: On every first request of a new session (or after some time after the last request) the browser asks instantly for credentials, then sends…
Gerald Schneider
  • 19,757
  • 8
  • 52
  • 79
5
votes
1 answer

apache mod_authnz_ldap - 500 error when blank username used

I've got Apache 2.4 running on Windows Server 2012. I've got mod_authnz_ldap working except if users put a blank username. This results in a 500 internal server error. this is the entry in httpd.conf for the "staff" area...
jpgorton
  • 241
  • 2
  • 6
5
votes
1 answer

More Searchfilters in AuthLDAPURL

Is it posible to have more then one searchfilter in AuthLDAPURL? Example uid filter: AuthType Basic AuthName "Test" AuthBasicProvider ldap AuthUserFile /dev/null AuthLDAPURL…
user1373150
  • 53
  • 1
  • 1
  • 5
4
votes
1 answer

Apache user authentication based on LDAP group memberships not working

i would like to auhenticate and authorize all users of one LDAP group (ApacheDS 2.0.0-20 on Windows, using multiple uniqueMember attributes in the group and the "Require ldap-group" statement in httpd config) for access to a web ressource. The user…
R. Wambacher
  • 41
  • 1
  • 1
  • 3
4
votes
0 answers

Apache 2.4 Redundant LDAP Authentication

I'm trying to provide a redundant LDAP authentication to my webserver. ScriptAlias /nagios/cgi-bin "/usr/local/nagios/sbin" AuthLDAPBindDN "search@domain" AuthLDAPBindPassword "pass" AuthLDAPURL…
4
votes
2 answers

apache2 ldap authentication

For whatever reason, I am not able to include the following line in my httpd.conf: AuthBasicProvider file ldap I keep getting the following error: Unknown Authn provider: ldap Apache is compiled from source with : --enable-authnz-ldap…
CMag
  • 687
  • 2
  • 11
  • 31
3
votes
2 answers

Can apache expose the ldap group used to authenticate to a php application?

I have a LAMP server setup using Apache2, mod_php, and mod_authnz_ldap to authenticate to Active Directory. This hosts a lightweight php application where users enter and manipulate data. Access is based on 'require ldap-group ...' directives, and a…
3
votes
1 answer

Apache Proxy & Basic Auth

Im trying to set up an Apache Proxy which also does LDAP Basic Auth: ServerAdmin webmaster@localhost DocumentRoot /var/www/html ProxyPass / …
3
votes
3 answers

Authenticating Apache against multiple ldap groups

I'm using mod_authn_alias and mod_authnz_ldap against an Apache/2.2.14 (Ubuntu) and I'm trying to configure ldap authentication against multiple domains. My config is: AuthLDAPBindDN…
user211984
  • 31
  • 1
  • 2
3
votes
4 answers

Apache LDAP authentication (mod_auth_ldap) on MacOS Server (10.5)

A - Is there a LDAP authentication module (mod_auth_ldap) for the version of Apache that comes built into MacOS Server 10.5? (I'm pretty sure no, but maybe someone compiled one.) B - If not, can it be compiled into MacOS' version of Apache? (Man,…
Simurr
  • 260
  • 5
  • 11
2
votes
1 answer

LDAP-based Apache auth (mod_ldap + mod_authnz_ldap) using own CA for SSL/TLS

SOLVED: Turned out problem was caused by forgotten legacy LDAPTrustedGlobalCert directives in various config files, using old certificate for the same FQDN tl;dr: We uses a self-signed CA and we never had to use directives that disable certificates…
CDuv
  • 240
  • 1
  • 3
  • 12
2
votes
2 answers

Apache authentication from multiple domains in AD with mod_authn_alias

I'm running Apache 2 and I need to authentificate users from multiple AD domains in one . I tried using mod_authn_alias ОС: Debian GNU/Linux Squueze with lastest updates Apache/2.2.16 Modules /etc/apache2/apache.conf:
Selivanov Pavel
  • 2,126
  • 3
  • 23
  • 47
2
votes
1 answer

Apache mod_auth_basic and Ordering

I have Apache setup to authenticate with active directory through ldap for my users. There are a few "system" users (for automated build tests) that are manually setup and authenticate through file. AuthBasicProvider ldap file The issue I'm having…
Josh Johnson
  • 133
  • 4
2
votes
3 answers

Apache LDAP Auth idle-timeout

As part of the security policy we are upgrading out systems to comply with, I need to set our Apache LDAP Auth to have a idle-timeout of 15 minutes. I.e. If the user stops using the system for over 15 minutes, the next time they go to use it they…
Stephen RC
  • 621
  • 3
  • 8
  • 13
1
2 3