Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Apache 2, mod_ldap, mod_auth_ldap, SSL
Special Forums UNIX and Linux Applications Apache 2, mod_ldap, mod_auth_ldap, SSL Post 302446668 by zaxxon on Thursday 19th of August 2010 10:01:19 AM
Old 08-19-2010
Apache 2, mod_ldap, mod_auth_ldap, SSL
Hi,
I have following problem. I have an Apache httpd v2 running. One of it's URLs is secured by an LDAP authentication encrypted via SSL. This works fine with the given directives. Currently there is following directive to tell with which LDAP server to authenticate:

Code:
AuthLDAPURL "ldaps://10.1.2.3/ou=users,o=company,c=com"

All is fine as long as I use IP-addresses. When changing this to a hostname in short form or as FQDN or even an alias from DNS (that can be all reached without problems, then I get the following in the log the modules produce for SSL:
Code:
[Thu Aug 19 15:38:29 2010] [warn] [client 10.8.4.24] [323614] auth_ldap authenticate: user someuser authentication failed;
 URI /somedir [LDAP: ldap_simple_bind_s() failed][Can't contact LDAP server]

When I change ldaps to ldap so that SSL is not used, I can use IPs and names in any way I want. Adding port 636 explicitly when trying names with ldaps does not make a difference.
I checked all directives from mod_ldap and mod_auth_ldap but couldn't find any that might relate to this.
Also I am not sure if the certificate I got from our CA has some information in it like, that might relate to this problem (I doubt that).

I googled also a lot and found similar things but often without usage of SSL and only 1 thread in some mailing list where the guy solved it but didn't describe it in detail.

So any hint is very welcome, thanks.

Cheers
zaxxon
 

10 More Discussions You Might Find Interesting

1. Solaris

Apache with SSL problem

Hi All, I'm attempting to build Apache 1.3.27 on a new Solaris 9 system. I am using following "Option 2" in the INSTALL of the mod_ssl-2.8.12-1.3.27, and I'm stumped. After I configure and make all the required components the make of the Apache server itself stops at: flex... (2 Replies)
Discussion started by: b_manu78
2 Replies

2. HP-UX

Apache and SSL

When everytime I start apache, it asks me to enter pass phrase, and I have to enter the pass phrase manually. I would like to write a script to monitor the apache, such that it will check the apache status, if it is stopped, then start it automatically. However, the script fails since the pass... (1 Reply)
Discussion started by: alfredo
1 Replies

3. UNIX for Advanced & Expert Users

Apache ssl questions for experts

Hi, I have configured apache 2.0.59 with mod_ssl to set up a proxy to my app server. Incomming traffic https outgoing http. The listen port for the ssl port is 8050 not 443. When I start the server and I test it i get an error message. I googled for it and found the following expaination. ... (3 Replies)
Discussion started by: elvis00
3 Replies

4. Solaris

SSL key Apache

We are running Apache 1.3 on solaris 8 we have renewed our ssl key with verisign. They have confirmed renewel and new ssl certifcate is appended to the end of the email. out apache config file has two directives SSLCertificateFile /export/home/apache/conf/ssl.crt/xxxx.crt SSLCertificationKeyFile... (2 Replies)
Discussion started by: Tirmazi
2 Replies

5. Web Development

Apache SSL Help

I had to update the CA Trusted Chains on two different UNIX servers running Apache. After looking through some documentation, it said that after the new CA's were installed, I had to run the /usr/ccs/bin/make command in order to create the symbolic links for apache to recognize the certs. On the... (1 Reply)
Discussion started by: camerodity
1 Replies

6. Web Development

apache ssl routing 2 dns

Hi i'm looking for some advice on apache ssl routing for 2 url.Fyi one url is certificate is verified by GeoTrust and another url on the other site certificate is verified by Verisgn.Is that possible to routing between this two url. Here is my scenario I have an https:// site running on an... (0 Replies)
Discussion started by: netxus
0 Replies

7. Web Development

Apache, cgi script run twice when ssl, once when not ssl

I have interesting problem. https:/host/some/x.cgi - this script has run twice when I call this url But http:/host/some/x.cgi work fine, only once. Output is text/plain. If I change output format to the Content-type text/html, then both urls works fine - executed only once. (2 Replies)
Discussion started by: kshji
2 Replies

8. Web Development

Apache - ModSSL (SSL Version?)

Does anyone know where Apache's use of SSL_VERSION_LIBRARY is defined and pulled from, in regard to headers? So far, I've tracked it down to mod_ssl. Which is fine, however, when I recompile mod_ssl with a new version of OpenSSL, and install the module, the request headers still report the old... (0 Replies)
Discussion started by: sun2ecliptic
0 Replies

9. IP Networking

configure apache to work with ssl

Hi, I need help to configure the apache to work with ssl. I have managed to create self-signed certificate according to the instruction in the following link. So I have the crt file and the key file. however when I add: <Virtualhost *:443> SSLEngine on ... (1 Reply)
Discussion started by: programAngel
1 Replies

10. Linux

Apache wildcard ssl on subdomain serves same page for non ssl virtualhosts

Issue observed: I have configured ng.my-site.com using widlcard ssl cert. When I hit https://www.my-site.com it loads ng.my-site.com website! please advise if I missed any concept / configs... Thank you! httpd.conf <VirtualHost *:80> ServerName www.my-site.com ServerAdmin... (0 Replies)
Discussion started by: ashokvpp
0 Replies

LEARN ABOUT DEBIAN

runapp::apache

RunApp::Apache(3pm)					User Contributed Perl Documentation				       RunApp::Apache(3pm)

NAME

       RunApp::Apache - Apache control for RunApp

SYNOPSIS

	use RunApp::Apache;

	$apache = RunApp::Apache->new
		   (root => "/tmp/apache_run",
		    report => 1,
		    apxs => '/usr/local/sbin/apxs',
		    # httpd => '/usr/local/sbin/httpd',
		    required_modules => ["log_config", "alias", "perl", "mime"],
		    config_block => q{
	[% IF AP_VERSION == 2 %]
	 eval { use Apache2 };
	 eval { use Apache::compat };
	[% END %]

	<Location /myapp>
	 AllowOverride None
	 SetHandler perl-script
	 PerlSetVar approot [% cwd %]
	 PerlHandler MyApp
	 Options +ExecCGI
	</Location>
	});

DESCRIPTION

       This is the class for defining a apache web server to be used in RunApp.

CONSTRUCTOR

       new (%arg)

       Required arg:

       root
	   The root for the apache instance.

       apxs
       httpd
	   If "apxs" is specified, "httpd" will be derived from it.

       required_modules
	   A arrayref to the apache modules required.

       config_block
	   The config block that will be the extra block in the template used by RunApp::Template::Apache.

       CTL The class for handling apachectl.  The default is RunApp::Control::AppControl.  You can also use RunApp::Control::ApacheCtl.

       CONF
	   The class for handling apache config.  The default is RunApp::Template::Apache.  It is used in the "build" phase of RunApp

SEE ALSO

       RunApp, RunApp::Control::Apache, RunApp::Template::Apache, App::Control

AUTHORS

       Chia-liang Kao <clkao@clkao.org>

       Refactored from works by Leon Brocard <acme@astray.com> and Tom Insam <tinsam@fotango.com>.

COPYRIGHT

       Copyright (C) 2002-5, Fotango Ltd.

       This module is free software; you can redistribute it or modify it under the same terms as Perl itself.

perl v5.8.8							    2008-01-09						       RunApp::Apache(3pm)
All times are GMT -4. The time now is 07:44 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy