Re: LDAP Authentication from Linux

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Holz <holz@xxxxxxxxxxxxxxxxx>
Date: Thu, 3 Apr 2008 14:21:02 -0700

On Thu, 03 Apr 2008 11:21:05 +0100
"Adrian Marsh (NNTP)" <adrian.marsh@xxxxxxxxxxxxxxxxxxxxxxx> wrote:

Hi All,

I'm trying to implement a secure authentication from an apache2 server
across to my SBS2003 server.

I've configured LDAP in apache, and if I bind using a Domain Admin
account then all is well and I can login.

However, I don't really want to use a domain admin account for this.
So I setup a new user account, and have tried using that but the bind
fails. I'm guessing its a permissions issue, but am not sure where to
start to look.

Second, am I using the right mechanism here? Isn't LDAP for directory
lookups and Kerberos for authentication??

Adrian

Novell has a great guide pertains to SuSE for LDAP authentication.
Unfortunately, I no longer have the link, but try their site. The
guide works for all major distros.

--
Jerry Maguire: Help me... help you. Help me, help you.
;-)

.

References:
- LDAP Authentication from Linux
  - From: Adrian Marsh (NNTP)

Prev by Date: Re: MS - Filtering /Relay SRX-080-313-600-193
Next by Date: Re: LDAP Authentication from Linux
Previous by thread: Re: LDAP Authentication from Linux
Next by thread: Re: LDAP Authentication from Linux
Index(es):
- Date
- Thread

Relevant Pages

Re: passwd_compat: ldap?
... but doesn't implement doing an actual bind ... operation to perform authentication. ... support a bind for authentication either (or doesn't support returning a ... with PADL's) to perform authentication against LDAP in that environment. ...
(Fedora)
Re: LDAP authentication
... cannot use authentication against LDAP without encryption. ... because the simple bind password would otherwise be sent in the clear ... perfom an LDAP bind, we check to see if the channel is encrypted (either ... perform the bind and simply return authentication failure internally. ...
(Fedora)
Re: How do I bind to LDAP with a username/password
... Authentication against LDAP normally works by attempting to bind with the ... Failure to bind indicates a failure to authenticate. ... The only other way to do it would be to bind with some master credentials ...
(comp.lang.java.programmer)
Re: LDAP Authentication from Linux
... So I have non-ssl based authentication working for LDAP binds.. ... I know I can modify the AuthLDAPURL directive to use ldaps://, and I've verified the SBS server is serving LDAP/SSL. ... But I still get a bind failure, and a Wireshark dump shows that I get an "Unknown CA " error from protocol TLSv1 ... I'm trying to implement a secure authentication from an apache2 server across to my SBS2003 server. ...
(microsoft.public.windows.server.sbs)
Re: Directory Services, LDAP or similar
... In other projects, we managed the user authentication by creating tables that define all users and its allowed capacities, then the application queryies that data to verify if a user has access to some feature or not. ... The above ID and password are sent to the service at login time. ... They are using Novell eDirectory at the enterprise level; yes it's LDAP. ... We already do that for three different DB servers; ...
(borland.public.delphi.non-technical)