Tags:
create new tag
, view all tags

Question

I have loaded these modules in Apache: 

LoadModule ldap_module modules/mod_ldap.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so

This is the error from apache logs:

[Tue Oct 02 09:39:39 2007] [warn] [client 10.224.102.162] [25295] auth_ldap authenticate: user dtolj authentication failed; URI /twiki/bin/configure.pl [LDAP: ldap_simple_bind_s() failed][Invalid credentials]

[Tue Oct 02 09:39:39 2007] [error] [client 10.224.102.162] user dtolj: authentication failure for "/twiki/bin/configure.pl": Password Mismatch

This is my twiki.conf file imported from http.conf 

Alias /twiki "/var/www/html/twiki"

<Directory "/var/www/html/twiki/bin">
    AllowOverride none
    Order Allow,Deny
    Allow from All
    Deny from env=blockAccess

    Options ExecCGI FollowSymLinks
    SetHandler cgi-script

    # Password file for TWiki users
    AuthUserFile /var/www/html/twiki/data/.htpasswd
    AuthName 'Enter your WikiName: (First name and last name, no space, no dots, capitalized, e.g. JohnSmith). Cancel to register if you do not have one.'
    AuthType Basic

    # File to return on access control error (e.g. wrong password)
    #ErrorDocument 401 /twiki/bin/view/TWiki/TWikiRegistration


    #LDAP Authentication ==============================================
    AuthBasicProvider ldap


    # LDAP Authentication & Authorization is final; do not check other databases
    AuthzLDAPAuthoritative on

#  Do basic password authentication in the clear
   AuthType Basic
#  The name of the protected area or "realm" TWiki
   AuthName "Wiki: Enter your network uname/pasw"
#  Active Directory requires an authenticating DN to access records
   #AuthLDAPBindDN "cn=dtolj,ou=DOMAIN,dc=DOMAIN,dc=local"
   AuthLDAPBindDN cn=dtolj,cn=users,dc=DOMAIN,dc=DOMAIN,dc=local

#  This is the password for the AuthLDAPBindDN user in Active Directory
   AuthLDAPBindPassword psw
#  The LDAP query URL

   #AuthLDAPURL ldap://IP:3268/DC=DOMAIN,DC=local?sAMAccountName?sub?(objectClass=*)
   AuthLDAPURL ldap://IP:3268/cn=users,DC=DOMAIN,DC=local?sAMAccountName?sub?(objectClass=*)


   #AuthLDAPGroupAttribute department
   AuthLDAPGroupAttributeIsDN off
   require valid-user

   #End of LDAP authentication==========================================


# Limit access to configure to specific IP addresses and or users.
# Make sure configure is not open to the general public.
# It exposes system details that can help attackers.
<FilesMatch "^(configure)$">
    SetHandler cgi-script
    Order Deny,Allow
    Allow from All

    #Require user dtolj

</FilesMatch>

</Directory>

NOTE: I am not using .htaccess, since I have all the configuration in twiki.conf. Do I need it?

Environment

TWiki version: 2.4.1
TWiki plugins:  
Server OS: RHEL5
Web server: Apache 2.3
Perl version: 5.8.8
Client OS: WinXp
Web Browser: IE7,FFx2
Categories:  

-- TWikiGuest - 02 Oct 2007

Answer

ALERT! If you answer a question - or have a question you asked answered by someone - please remember to edit the page and set the status to answered. The status is in a drop-down list below the edit box.

Sorry, closing this after more than 30 days of inactivity. Please feel free to re-open if needed.

-- PeterThoeny - 02 Dec 2007

 
Change status to:
WebForm
SupportStatus ClosedUnanswered
Edit | Attach | Print version | History: r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r4 - 2007-12-02 - PeterThoeny
 

Twitter Delicious Facebook Digg Google Bookmarks E-mail LinkedIn Reddit StumbleUpon    
  • Download TWiki
TWiki logo Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2012 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.