httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "William A. Rowe, Jr." <wr...@rowe-clan.net>
Subject Re: [users@httpd] Mod_auth_ldap and Novell e-dir
Date Thu, 01 Sep 2005 20:33:53 GMT 
Craig - using only autodetection (don't force the .hnw file) - I would
suggest you try using the 2.1.8 alpha release when it's announced in a
few days.  ldap was quite experimental on 2.2, and with ssl and starttls
support, doubly so.

Bill

Craig L. Ching wrote:
> Hi,
> 
> I'm trying to build an apache (2.0.54 on SunOS 7) that will be able to
> interface with Novell e-Directory to authenticate users using
> mod_auth_ldap.  I have a build that works using the OpenLDAP libraries
> and normal ldap://, but when we try to do the same thing using ldaps://,
> I get errors that indicate that OpenLDAP doesn't support the DER
> encoding for the certificate.
> 
> So I was thinking of using the Novell LDAP SDK, but that doesn't appear
> to be straight-forward.  Using the following options:
> 
>   --with-ldap=ldapsdk \
>  
> --with-ldap-include=/export/home/cching/novell/cldap_2005.07.18/include
> \
>   --with-ldap-lib=/export/home/cching/novell/cldap_2005.07.18/lib \
>   --enable-ldap=static \
>   --enable-auth-ldap=static \
> 
> I get the following compile error:
> 
> "util_ldap.c", line 1568: undefined symbol: LDAP_OPT_X_TLS_CACERTFILE
> 
> So, delving into this a bit further, I see a preprocessor macro:
> 
> APR_HAS_NOVELL_LDAPSDK
> 
> That looks interesting.  AFAICT, the only way to turn this on is by
> using srclib/apr-util/include/apr_ldap.hnw for apr_ldap.h.  Copying that
> over gets me further, except that I get these link errors:
> 
> ild: (undefined symbol) ldapssl_init -- referenced in the text segment
> of modules/experimental/.libs/mod_ldap.a(util_ldap.o)
> 
> So, has anyone gotten the Novell LDAP SDK to work?  Any other hints for
> how I could go about making mod_auth_ldap work with Novell e-Dir?
> 
> Thanks for any help!
> 
> Cheers,
> Craig
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Mime
View raw message