httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eric Covener <cove...@gmail.com>
Subject Re: [users] Re: [users@httpd] LDAP Login Access by Organization Unit
Date Mon, 02 Jun 2014 22:05:06 GMT
On Mon, Jun 2, 2014 at 10:06 AM, Darly Senecal Baptiste
<dsenecalb@gmail.com> wrote:
> [Fri May 30 13:24:13 2014] [debug] mod_authnz_ldap.c(390): [client
> ip.add.re.ss] [10449] auth_ldap authenticate: using URL
> ldap://ldap-ldap-address1
> ldap-ldap-address2/OU=Miamin,DC=domain,DC=tld?sAMAccountName?sub?(objectClass=*)
> [Fri May 30 13:24:13 2014] [warn] [client ip.add.re.ss] [10449] auth_ldap
> authenticate: user Chi-User authentication failed; URI /svn/ [User not
> found][No such object]
> [Fri May 30 13:24:13 2014] [warn] [client ip.add.re.ss] [10449] auth_ldap
> authenticate: user Chi-User authentication failed; URI /svn/ [LDAP:
> ldap_simple_bind_s() failed][Invalid credentials]

Unfortunately still a mystery  What exact version are you on? .  It is
odd that you don't see the debug message between each warn message.
The latest 2.2.x, AFAICT, would not be able to issue the errors that
way.

The debug mod_ldap_debug mod here might help w/o needing to change
mod_ldap/mod_authnz_ldap:

  https://github.com/covener/apache-modules

It provides some details of interaction with your LDAP sdk to give a
hint about what's going on at that layer.  It may be difficult to
scrub effectively.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message