Tags:
create new tag
view all tags

Question

I have loaded these modules in Apache: 

LoadModule ldap_module modules/mod_ldap.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so

This is the error from apache logs:

[Tue Oct 02 09:39:39 2007] [warn] [client 10.224.102.162] [25295] auth_ldap authenticate: user dtolj authentication failed; URI /twiki/bin/configure.pl [LDAP: ldap_simple_bind_s() failed][Invalid credentials]

[Tue Oct 02 09:39:39 2007] [error] [client 10.224.102.162] user dtolj: authentication failure for "/twiki/bin/configure.pl": Password Mismatch

This is my twiki.conf file imported from http.conf 

Alias /twiki "/var/www/html/twiki"

<Directory "/var/www/html/twiki/bin">
    AllowOverride none
    Order Allow,Deny
    Allow from All
    Deny from env=blockAccess

    Options ExecCGI FollowSymLinks
    SetHandler cgi-script

    # Password file for TWiki users
    AuthUserFile /var/www/html/twiki/data/.htpasswd
    AuthName 'Enter your WikiName: (First name and last name, no space, no dots, capitalized, e.g. JohnSmith). Cancel to register if you do not have one.'
    AuthType Basic

    # File to return on access control error (e.g. wrong password)
    #ErrorDocument 401 /twiki/bin/view/TWiki/TWikiRegistration


    #LDAP Authentication ==============================================
    AuthBasicProvider ldap


    # LDAP Authentication & Authorization is final; do not check other databases
    AuthzLDAPAuthoritative on

#  Do basic password authentication in the clear
   AuthType Basic
#  The name of the protected area or "realm" TWiki
   AuthName "Wiki: Enter your network uname/pasw"
#  Active Directory requires an authenticating DN to access records
   #AuthLDAPBindDN "cn=dtolj,ou=DOMAIN,dc=DOMAIN,dc=local"
   AuthLDAPBindDN cn=dtolj,cn=users,dc=DOMAIN,dc=DOMAIN,dc=local

#  This is the password for the AuthLDAPBindDN user in Active Directory
   AuthLDAPBindPassword psw
#  The LDAP query URL

   #AuthLDAPURL ldap://IP:3268/DC=DOMAIN,DC=local?sAMAccountName?sub?(objectClass=*)
   AuthLDAPURL ldap://IP:3268/cn=users,DC=DOMAIN,DC=local?sAMAccountName?sub?(objectClass=*)


   #AuthLDAPGroupAttribute department
   AuthLDAPGroupAttributeIsDN off
   require valid-user

   #End of LDAP authentication==========================================


# Limit access to configure to specific IP addresses and or users.
# Make sure configure is not open to the general public.
# It exposes system details that can help attackers.
<FilesMatch "^(configure)$">
    SetHandler cgi-script
    Order Deny,Allow
    Allow from All

    #Require user dtolj

</FilesMatch>

</Directory>

NOTE: I am not using .htaccess, since I have all the configuration in twiki.conf. Do I need it?

Environment

TWiki version: 2.4.1
TWiki plugins:  
Server OS: RHEL5
Web server: Apache 2.3
Perl version: 5.8.8
Client OS: WinXp
Web Browser: IE7,FFx2
Categories:  

-- TWikiGuest - 02 Oct 2007

Answer

ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

Sorry, closing this after more than 30 days of inactivity. Please feel free to re-open if needed.

-- PeterThoeny - 02 Dec 2007

Change status to:
WebForm
SupportStatus ClosedUnanswered
Edit | Attach | Watch | Print version | History: r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r4 - 2007-12-02 - PeterThoeny
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.