http://qs321.pair.com?node_id=11115418


in reply to Re: PerlCGI + Apache ldap authentication configuration
in thread PerlCGI + Apache ldap authentication configuration

Hi soonex

1.Yes, I have configured my credentials to bind with ldap server and trying to authenticate with my colleagues credentials, and getting the same password mismatch erro.r

2.I already tried the AuthLDAPBindPassword without the double quotes. Seems quoting does not matter.


All is well. I learn by answering your questions...

Replies are listed 'Best First'.
Re^3: PerlCGI + Apache ldap authentication configuration
by soonix (Canon) on Apr 13, 2020 at 08:56 UTC

    Hmmm. In this case, my next step would be to look in the DC's event log. (Ours is configured to log failed authentication attempts, I suppose yours does this, too)

    And, although the last message says "Password Mismatch", theoretically it could be a misspelt username as well, or even a wrong domain.
      Hi soonix,

      I fixed the issue.

      AuthLDAPURL "LDAP://xx.xx.xxx.xx:389/OU=Accounts,OU=XX,OU=XXXX,OU=XX,D +C=DOMAIN,DC=com?sAMAccountName?sub?(&(sAMAccountName=*)(objectClass=P +erson))" AuthLDAPBindDN "CN=service-account,OU=ProcessIDs,OU=Logical Secure,OU= +Core Directory Service,DC=DOMAIN,DC=com"

      I found that at AuthLDAPURL line we need to use the authenticated user's DN details + the filter information and at AuthLDAPBindDN line we need to put the service account's dn details.


      All is well. I learn by answering your questions...