using LDAP-based user authentication

Jeff Rattray jrattray at pnhs.purdue.edu
Fri Dec 9 15:39:19 CET 2005

Previous message: using LDAP-based user authentication
Next message: using LDAP-based user authentication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 8 Dec 2005 at 12:54:59 -0800 CWaters at jeld-wen.com said:
> 
> I am using authz_ldap and don't seem to have that problem.  Can you show the
> config for your module?  What is your LDAP store???  AD,OpenLDAP...I am
> authenticating my users against an M$ Active Directory.  Works pretty well.
> I would include your .htaccess code as well.  That way we can compare them
> to known working configs.
>
Sure!  Right now I have it all in .htaccess for testing; I realize that this is 
a bad idea long-term and I can't do caching that way, but unless we get this 
username issue sorted out I'm going to have to drop it all anyways.

We are using a Netscape/iPlanet Directory server version 4.16, which we run 
within our College.  There is also an Openldap server at the University level, 
but it only accepts SSL v3 ldap connections, and I haven't figure out how to 
make mod_authz_ldap do that.

Contents of my .htaccess file:

# .htaccess for LDAP authentication against directory.purdue.edu
# 08DE2005 JJR
# NOTE - mod_authz_ldap IS NOT THE SAME AS mod_auth_ldap; different syntax etc!

      AuthzLDAPEngine on
      AuthzLDAPAuthoritative on

      AuthzLDAPServer directory.pnhs.purdue.edu
      AuthzLDAPUserBase "ou=people,o=pnhs.purdue.edu"
      AuthzLDAPUserKey uid
      AuthzLDAPUserScope base

      AuthType basic
      AuthName "PNHS LDAP Account Access"
      require valid-user


Right now I have put our nagios pages back to the original files-based 
authentication, and am testing ldap authentication in a different directory 
with a php script that prints out all of the environment variables. 
$_SERVER["REMOTE_USER"] is the relevant one, and it is still set to 	
uid=jrattray,ou=people,o=pnhs.purdue.edu .

I am open for suggestions.

Thanks,
Jeff

-- 
Jeff Rattray, Ph.D.
Manager, Web-based Instructional Technology
Purdue University College of Pharmacy, Nursing and Health Sciences



-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: using LDAP-based user authentication
Next message: using LDAP-based user authentication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list