From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jan Trautmann Subject: Re: Apache, LDAP and SSL Date: Tue, 11 Apr 2006 21:03:13 +0200 Message-ID: <200604112103.13195.phoenix2@web.de> References: <200604040933.34418.martin.klier@atu.de> Reply-To: phoenix2@web.de Mime-Version: 1.0 Content-Transfer-Encoding: QUOTED-PRINTABLE Return-path: In-Reply-To: <200604040933.34418.martin.klier@atu.de> Content-Disposition: inline Sender: linux-admin-owner@vger.kernel.org List-Id: Content-Type: text/plain; charset="iso-8859-1" To: Martin Klier , linux-admin@vger.kernel.org Gr=FCsse aus der Operpfalz :)=20 http://www.rrze.uni-erlangen.de/dienste/arbeiten-rechnen/linux/howtos/l= dap/ssl.shtml=20 There i found something about SSL and LDAP in german.=20 I=B4ve had tried a few time ago something simular but after a few hours= i=20 decieded that it costs too much time to integrate this with M$ Active=20 Directory. I must say that i only have done this for playing and testin= g.=20 But i have often read in forums that there is a problem with M$ AD and = LDAP in=20 the same way. I remember a possible solution that the M$ AD must be the= PDC=20 an the Linux must be BPC but in this special case i can=B4t help much. Maybe reply some more information like syslogs for the problem in SLES9= =2E Maybe you can get help in www.linuxforen.de (if you not already searche= d or=20 asked there). In this forum i found this link=20 http://www.oo-services.com/de/articles/sso.aspx . This is a Howto for making SSL and LDAP running with Active Directory 2= 003. I hope this could help you. I think that the problem with not working LDAP in SLES9 is a configurat= ion or=20 version problem maybe an new version of LDAP/Samba could help. I realy = dont=20 know which version is in SLES9 but in SuSe most times there are old and= crap=20 versions, this would be nothing new for me ;)=20 Best regards Jan Martin Trautmann=20 Am Dienstag, 4. April 2006 09:33 schrieben Sie: > Hi Admins, > > has anyone ever made a configuration like this: > Apache 2.x.x, SSL and, most important, SSL-encrypted(!) LDAP auth aga= inst a > Microcrap ActiveDirectory 2003? > > Topday, Apache 2.0.x and 2.2.0 works, LDAP-agaist-AD works, SSL works= , but > not LDAPS. > > I happily tried on SuSE10.0 (pre-built Apache, no LDAP SSL support bu= ilt > in, so it's crap) and SLES9 (own-built Apache, with ldap modules with > ssl/SASL), but there are always strange errors, most sounding like a > non-available LDAP server. But, indeed, the 3269 port is open there. = Since > I have no clue about the windows box, I can't say any more about this= side. > > Is there any ressource in the world I can look on? - To unsubscribe from this list: send the line "unsubscribe linux-admin" = in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html