Beefy Boxes and Bandwidth Generously Provided by pair Networks
Keep It Simple, Stupid
 
PerlMonks  

Re: PerlCGI + Apache ldap authentication configuration

by soonix (Canon)
on Apr 12, 2020 at 18:56 UTC ( #11115403=note: print w/replies, xml ) Need Help??


in reply to PerlCGI + Apache ldap authentication configuration

  • The user to be authenticated and the user to bind are usually different, and so are the password that you enter on the webpage and the AuthLDAPBindPassword
  • also note the AuthLDAPBindPassword example in the docs doesn't have quotes, so probably your server thinks the quotes in your AuthLDAPBindPassword directive are part of the bind user's password

Replies are listed 'Best First'.
Re^2: PerlCGI + Apache ldap authentication configuration
by vinoth.ree (Monsignor) on Apr 13, 2020 at 05:20 UTC
    Hi soonex

    1.Yes, I have configured my credentials to bind with ldap server and trying to authenticate with my colleagues credentials, and getting the same password mismatch erro.r

    2.I already tried the AuthLDAPBindPassword without the double quotes. Seems quoting does not matter.


    All is well. I learn by answering your questions...

      Hmmm. In this case, my next step would be to look in the DC's event log. (Ours is configured to log failed authentication attempts, I suppose yours does this, too)

      And, although the last message says "Password Mismatch", theoretically it could be a misspelt username as well, or even a wrong domain.
        Hi soonix,

        I fixed the issue.

        AuthLDAPURL "LDAP://xx.xx.xxx.xx:389/OU=Accounts,OU=XX,OU=XXXX,OU=XX,D +C=DOMAIN,DC=com?sAMAccountName?sub?(&(sAMAccountName=*)(objectClass=P +erson))" AuthLDAPBindDN "CN=service-account,OU=ProcessIDs,OU=Logical Secure,OU= +Core Directory Service,DC=DOMAIN,DC=com"

        I found that at AuthLDAPURL line we need to use the authenticated user's DN details + the filter information and at AuthLDAPBindDN line we need to put the service account's dn details.


        All is well. I learn by answering your questions...

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://11115403]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others scrutinizing the Monastery: (2)
As of 2020-10-25 06:32 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    My favourite web site is:












    Results (249 votes). Check out past polls.

    Notices?