[Auth_ldap] Auth_Ldap and Active Directory with TLS/SSL

Aaron Smith Aaron.Smith at kzoo.edu
Tue Oct 10 08:04:53 PDT 2006 

Ok, I'll do that.  I was under the impression that Openldap is what was
required for TLS and that you had to jump through hoops to make the
Openldap version work with SSL?  No matter, I'll do a search.  What are
you using now instead of Auth_LDAP if you don't mind my asking?  The end
GOAL for me is to make Apache 1.x authenticate to AD in a secure manner,
not too picky on HOW that's done.  :)

--------------------------------------------------------------------
Aaron Smith                Aaron.Smith at kzoo.edu
System Administrator   (269) 337-7496
Kalamazoo College
 

-----Original Message-----
From: McAllister, Andrew [mailto:McAllisterA at umsystem.edu] 
Sent: Tuesday, October 10, 2006 10:55 AM
To: Aaron Smith
Subject: RE: [Auth_ldap] Auth_Ldap and Active Directory with TLS/SSL

Search the list archives for mcallister or mcallistera. That's me. I've
posted ways to do this in the past. You've got to modify the code so
that it does TLS with openldap. Not too hard really.

Unfortunately, we no longer use auth_ldap so I can't help you other than
in the archives.

Andy

> -----Original Message-----
> From: auth_ldap-bounces at rudedog.org 
> [mailto:auth_ldap-bounces at rudedog.org] On Behalf Of Aaron Smith
> Sent: Tuesday, October 10, 2006 9:39 AM
> To: auth_ldap at rudedog.org
> Subject: [Auth_ldap] Auth_Ldap and Active Directory with TLS/SSL
> 
> So I'm trying to get Auth_ldap to make a secure connection to 
> our Active Directory servers.  Auth_Ldap is running on a 
> Solaris 10 box with Apache 1.3.33.  It was built using the 
> Open_ldap SDK.  Authentication works fine if I do NOT include 
> the AuthLDAPStartTLS directive (actually, I also have to 
> point it at one of the old 2000 servers as trying to 
> authenticate to the newer 2003 servers results in an 
> "Operations Error"), but if I include the TLS directive, I 
> get a generic "Start TLS failed: Connect error" I the apache 
> logs.  Is there a link someone can send me to with info on 
> getting auth_ldap to authenticate in a secure manner with an 
> Active Directory server?  Preferably 2003 Server?
> 
>  
> 
> --------------------------------------------------------------------
> 
> Aaron Smith                Aaron.Smith at kzoo.edu
> 
> System Administrator   (269) 337-7496
> 
> Kalamazoo College
> 
>  
> 
>  
> 
>

More information about the Auth_ldap mailing list