Apache 2, mod_ldap, mod_auth_ldap, SSL

 
Thread Tools Search this Thread
Special Forums UNIX and Linux Applications Apache 2, mod_ldap, mod_auth_ldap, SSL
# 1  
Old 08-19-2010
Apache 2, mod_ldap, mod_auth_ldap, SSL

Hi,
I have following problem. I have an Apache httpd v2 running. One of it's URLs is secured by an LDAP authentication encrypted via SSL. This works fine with the given directives. Currently there is following directive to tell with which LDAP server to authenticate:

Code:
AuthLDAPURL "ldaps://10.1.2.3/ou=users,o=company,c=com"

All is fine as long as I use IP-addresses. When changing this to a hostname in short form or as FQDN or even an alias from DNS (that can be all reached without problems, then I get the following in the log the modules produce for SSL:
Code:
[Thu Aug 19 15:38:29 2010] [warn] [client 10.8.4.24] [323614] auth_ldap authenticate: user someuser authentication failed;
 URI /somedir [LDAP: ldap_simple_bind_s() failed][Can't contact LDAP server]

When I change ldaps to ldap so that SSL is not used, I can use IPs and names in any way I want. Adding port 636 explicitly when trying names with ldaps does not make a difference.
I checked all directives from mod_ldap and mod_auth_ldap but couldn't find any that might relate to this.
Also I am not sure if the certificate I got from our CA has some information in it like, that might relate to this problem (I doubt that).

I googled also a lot and found similar things but often without usage of SSL and only 1 thread in some mailing list where the guy solved it but didn't describe it in detail.

So any hint is very welcome, thanks.

Cheers
zaxxon
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Linux

Apache wildcard ssl on subdomain serves same page for non ssl virtualhosts

Issue observed: I have configured ng.my-site.com using widlcard ssl cert. When I hit https://www.my-site.com it loads ng.my-site.com website! please advise if I missed any concept / configs... Thank you! httpd.conf <VirtualHost *:80> ServerName www.my-site.com ServerAdmin... (0 Replies)
Discussion started by: ashokvpp
0 Replies

2. IP Networking

configure apache to work with ssl

Hi, I need help to configure the apache to work with ssl. I have managed to create self-signed certificate according to the instruction in the following link. So I have the crt file and the key file. however when I add: <Virtualhost *:443> SSLEngine on ... (1 Reply)
Discussion started by: programAngel
1 Replies

3. Web Development

Apache - ModSSL (SSL Version?)

Does anyone know where Apache's use of SSL_VERSION_LIBRARY is defined and pulled from, in regard to headers? So far, I've tracked it down to mod_ssl. Which is fine, however, when I recompile mod_ssl with a new version of OpenSSL, and install the module, the request headers still report the old... (0 Replies)
Discussion started by: sun2ecliptic
0 Replies

4. Web Development

Apache, cgi script run twice when ssl, once when not ssl

I have interesting problem. https:/host/some/x.cgi - this script has run twice when I call this url But http:/host/some/x.cgi work fine, only once. Output is text/plain. If I change output format to the Content-type text/html, then both urls works fine - executed only once. (2 Replies)
Discussion started by: kshji
2 Replies

5. Web Development

apache ssl routing 2 dns

Hi i'm looking for some advice on apache ssl routing for 2 url.Fyi one url is certificate is verified by GeoTrust and another url on the other site certificate is verified by Verisgn.Is that possible to routing between this two url. Here is my scenario I have an https:// site running on an... (0 Replies)
Discussion started by: netxus
0 Replies

6. Web Development

Apache SSL Help

I had to update the CA Trusted Chains on two different UNIX servers running Apache. After looking through some documentation, it said that after the new CA's were installed, I had to run the /usr/ccs/bin/make command in order to create the symbolic links for apache to recognize the certs. On the... (1 Reply)
Discussion started by: camerodity
1 Replies

7. Solaris

SSL key Apache

We are running Apache 1.3 on solaris 8 we have renewed our ssl key with verisign. They have confirmed renewel and new ssl certifcate is appended to the end of the email. out apache config file has two directives SSLCertificateFile /export/home/apache/conf/ssl.crt/xxxx.crt SSLCertificationKeyFile... (2 Replies)
Discussion started by: Tirmazi
2 Replies

8. UNIX for Advanced & Expert Users

Apache ssl questions for experts

Hi, I have configured apache 2.0.59 with mod_ssl to set up a proxy to my app server. Incomming traffic https outgoing http. The listen port for the ssl port is 8050 not 443. When I start the server and I test it i get an error message. I googled for it and found the following expaination. ... (3 Replies)
Discussion started by: elvis00
3 Replies

9. HP-UX

Apache and SSL

When everytime I start apache, it asks me to enter pass phrase, and I have to enter the pass phrase manually. I would like to write a script to monitor the apache, such that it will check the apache status, if it is stopped, then start it automatically. However, the script fails since the pass... (1 Reply)
Discussion started by: alfredo
1 Replies

10. Solaris

Apache with SSL problem

Hi All, I'm attempting to build Apache 1.3.27 on a new Solaris 9 system. I am using following "Option 2" in the INSTALL of the mod_ssl-2.8.12-1.3.27, and I'm stumped. After I configure and make all the required components the make of the Apache server itself stops at: flex... (2 Replies)
Discussion started by: b_manu78
2 Replies
Login or Register to Ask a Question