httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eric Covener <>
Subject Re: [users@httpd] mod_authnz_ldap AuthLDAPURL problem
Date Thu, 18 Mar 2010 17:34:18 GMT
On Thu, Mar 18, 2010 at 1:25 PM,  <> wrote:
> Hi,
> when I use the following AuthLDAPURL
> "ldap://adserver/ou=city1,dc=abc,dc=com?sAMAccountName?sub?(&(objectClass=user)(!(objectClass=computer)))"
> I can authenticate any user in "ou" city1.
> If I replace the AuthLDPAURL by
> "ldap://adserver/dc=abc,dc=com?sAMAccountName?sub?(&(objectClass=user)(!(objectClass=computer)))"
> I get an Apache 2.2 internal error and in the error log the following message:
> [debug] mod_authnz_ldap.c(379): [client xxxx] [8655] auth_ldap authenticate: using URL
> [info] [client xxxx] [8655] auth_ldap authenticate: user myusername authentication failed;
URI /test/ [ldap_search_ext_s() for user failed][Operations error]
> When I do ldapsearch ... -b 'dc=abc,dc=com' '(&(objectClass=user)(!(objectClass=computer))(samaccountname=myusername)',
the Active Directory server returns data, which seems to imply that there's something wrong
with the mod_authnz_ldap module, or with the way I set it up or use it.

Can you look at the differences on the wire via e.g. wireshark?  This
should make the difference in the search pretty easy to spot.

Eric Covener

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message