Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Apache 2.4 and LDAP

Tags:

apache

ldap

I had a server running RHEL 6.5 with httpd 2.2, and I had LDAP authentication for web pages working perfectly with this:

<Directory /var/www/html/restricted>
  AuthType Basic
  AuthName "Restricted files"
  AuthBasicProvider file ldap
  AuthUserFile /etc/httpd/local_users
  AuthGroupFile /etc/httpd/local_groups

  AuthLDAPBindDN CN=bind,OU=Generic-Logon,OU=Generic,DC=example,DC=com
  AuthLDAPBindPassword lamepassword
  AuthLDAPURL ldaps://ldap.example.com:636/dc=example,dc=com?sAMAccountName?sub

  AuthzLDAPAuthoritative off

  require group restricted
  require ldap-group CN=ug-employees,OU=Dept,OU=Dept-Groups,DC=example,DC=com
  require ldap-group CN=ug-others,OU=Dept,OU=Dept-Groups,DC=example,DC=com
</Directory>

Users were getting excessive 500 errors accessing the restricted pages, and some Googling tells me that going from httpd 2.2 to 2.4 could solve this. I installed a fresh server with RHEL 7 and httpd 2.4, and that exact same line. But now...

[~]$ sudo apachectl configtest
AH00526: Syntax error on line 426 of /etc/httpd/conf/httpd.conf:
Unknown Authn provider: ldap

What's going on here? The RHEL 7 manual says that LDAP authentication is baked into httpd 2.4, and AFAICT, I'm following the instructions from apache.org. FWIW, I can't any LDAP modules in yum or installed in my /etc/httpd/modules.

Thoughts? I know I'm missing something tiny.

Thanks!

like image 373
user2007854 Avatar asked Oct 20 '14 23:10

user2007854

People also ask

What are three ways to LDAP authenticate?

In LDAP, authentication is supplied in the "bind" operation. LDAP v3 supports three types of authentication: anonymous, simple and SASL authentication.

What is needed for LDAP authentication?

LDAP authentication involves verifying provided usernames and passwords by connecting with a directory service that uses the LDAP protocol. Some directory-servers that use LDAP in this manner are OpenLDAP, MS Active Directory, and OpenDJ.

Why is LDAP used for authentication?

Lightweight directory access protocol (LDAP) is a protocol that helps users find data about organizations, persons, and more. LDAP has two main goals: to store data in the LDAP directory and authenticate users to access the directory.

1 Answers

According to Redhat's support site you should run

# subscription-manager repos --enable rhel-7-server-optional-rpms
# yum install mod_ldap -y

See: https://access.redhat.com/solutions/977573

like image 167
frndrfoe Avatar answered Sep 19 '22 15:09

frndrfoe
Sign in to Comment

Related questions

How to resolve favicon.ico not found error on apache
Request body (Content-Length) is larger than the configured limit?
How to disable pagespeed in the Bitnami stack?
no such column: django_content_type.name
How to install Maven in Windows?
How to detect if running on localhost
PHPMailer Hangs on Send
How to change Port 8080 on Apache Tomcat on Linux Centos 6.5 server to the Default?
Laravel get 500 internal server error
(13)Permission denied: Error retrieving pid file run/httpd.pid
Set up php-fpm status page with php7 and apache
Proper .htaccess config for Next.js SSG
Multithreading in PHP
redirecting www.subdomain.example.com to subdomain.example.com
ForceType/htaccess file extension question - extensionless files?
htaccess change DirectoryIndex priority to php and not html
Rails 3.1, Unicorn and Apache: static files
Best way to track (direct) file downloads
xampp virtual host - always loading htdocs
Change my hosts file to route to a folder and not an ip

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!