[Auth_ldap] error on apachectl start after compiling auth_ldap-1.6.0 with ssl support

Ricardo Stella stella at rider.edu
Fri Sep 23 07:40:44 PDT 2005 

Here's what I've done, but under Solaris.  I  could not get it to work
with SDK v5.x.  Had to use the older 4.x.  Then here's my build cheat sheet:

# Done after apache is built AND installed...
# http://www.rudedog.org/auth_ldap/auth_ldap-1.6.0.tar.gz
# REQUIRES Netscape LDAP SDK 4.x!
./configure \
--with-apxs=/usr/local/apache/bin/apxs \
--with-ldap-sdk=netscape \
--with-sdk-headers=/usr/local/ldapsdk414/include \
--with-sdk-libs=/usr/local/ldapsdk414/lib \
--with-ssl \
--with-activate
# The below is NOT NEEDED if crle (or ldconfig) was set up !!!
# Add -R /usr/local/ldapsdk414/include to CPPFLAGS and -R
/usr/local/ldapsdk414/lib to LIBS in Makefile
make
make install

You'll need to get valid copies of cert7.db (which includes lists of
valid CAs).  If you use your own CA, you'll need to put your CA's
certificate in the cert7.db file - A copy of Netscape Communicator 4.7x
would be needed (it's the simplest way).

Then in the httpd.conf file add the path to where you put the cert7.db
(outside any Directory definition)
AuthLDAPCertDBPath /usr/local/ssl
And then simply point use 'ldaps' instead of 'ldap'

I'm moving over to 2.x in any case with it's built-in support now that
mod-perl is out of beta...

Rick Muroski wrote:

> I have setup an OpenBSD-Postfix-MySQL-DSPAM-Apache server. I need to
> be able to login to DSPAM's cgi interface via ldap with ssl.
>
> I am using Apache 1.3 that is incorporated into OpenBSD 3.7. I had
> ldap authentication working via normal ldap, but I want to use ldaps
> so that I am not sending clear text passwords around.
>
> I downloaded auth_ldap-1.6.0 and the Sun ONE Directory SDK for C 5.08
> (which I am assuming is used in place of the Netscape SDK, since I
> could not find a Netscape SDK download that did not bring me back to
> the Mozilla SDK without ssl support.)
>
> I copied the contents of the SDK's include directory into:
> /usr/lib/apache/include
> and
> I copied the contents of the SDK's lib directory into:
> /usr/lib/apache/modules
>
> Here is a copy of my configuration file for auth_ldap-1.6.0:
>
> #!/bin/sh
>
> ./configure \
> --with-apxs=/usr/sbin \
> --with-ldap-sdk=other \
> --with-sdk-headers=/usr/lib/apache/include \
> --with-sdk-libs=/usr/lib/apache/modules \
> --with-ssl
>
> I ran this configure script and everything seems fine.
> I ran make and everything seems fine.
> I ran make install and everything seems fine.
>
> When I try to start Apache again with apachectl start this is what I
> get back:
>
> $ sudo apachectl start
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_unbind_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_unbind_s'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_init'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_init'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_set_option'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_set_option'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_set_option'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_set_option'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_simple_bind_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_simple_bind_s'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_simple_bind_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_simple_bind_s'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_err2string'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_err2string'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldapssl_install_routines'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldapssl_install_routines'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_search_ext_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_search_ext_s'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_search_ext_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_search_ext_s'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_count_entries'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_count_entries'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_first_entry'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_first_entry'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_first_entry'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_first_entry'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_get_dn'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_get_dn'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_get_dn'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_get_dn'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_memfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_memfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_memfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_memfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_msgfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_msgfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_msgfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_msgfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_msgfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_msgfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_msgfree'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_msgfree'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_url_parse'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_url_parse'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_free_urldesc'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_free_urldesc'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldapssl_client_init'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldapssl_client_init'
> /usr/sbin/httpd:/usr/lib/apache/modules/auth_ldap.so: undefined symbol
> 'ldap_compare_s'
> /usr/sbin/httpd: /usr/lib/apache/modules/auth_ldap.so: can't resolve
> reference 'ldap_compare_s'
> [Thu Sep 22 16:07:54 2005] [warn] Loaded DSO
> /usr/lib/apache/modules/auth_ldap.so uses plain Apache 1.3 API, this
> module might crash under EAPI! (please recompile it with -DEAPI)
> Illegal instruction (core dumped)
> /usr/sbin/apachectl start: httpd could not be started
>
> Any help would be extremely appreciated.
>
> -Rick
> -- 
>
>Rick T. Muroski
>Assistant System Administrator
> 
>*Hytec Dealer Services, Inc.
>*/Industry Leader in circuit board repair since 1981/ 
>3600 Vineland Road Suite 121
>Orlando, FL  32811
>*800-883-1001 extension 3032
>*407-297-1001
>407-297-4310 Fax
>*http://www.hytecrepair.com <http://www.hytecrepair.com/>*
>
>------------------------------------------------------------------------
>
>_______________________________________________
>Auth_ldap mailing list
>Auth_ldap at rudedog.org
>http://www.rudedog.org/mailman/listinfo/auth_ldap
>  
>

-- 

°(((=((===°°°(((===========================================

-------------- next part --------------
A non-text attachment was scrubbed...
Name: stella.vcf
Type: text/x-vcard
Size: 146 bytes
Desc: not available
Url : http://www.rudedog.org/pipermail/auth_ldap/attachments/20050923/0c80ed10/attachment.vcf

More information about the Auth_ldap mailing list