On Mon, Dec 13, 2004 at 12:52:00PM -0700, Wayne S. Frazee wrote: > On Monday 13 December 2004 11:26, TAYLOR, TIM (CONTRACTOR) wrote: > > Wayne, > > have you looked into the SSLOptions +FakeBasicAuth directive? > > > > Fakeauth allows the transfer of the DN to use as a basic name, which is fine, > however the problem I am having is more along the lines of verifying the > incoming user's x.509 key(s) and information against an LDAP-directory-held > value for the authorized user(s) and rejecting access via 401 if they either > aren't in the LDAP OR something doesnt seem right with the passed value.
mod_authz_ldap can do that: http://authzldap.othello.ch/ joe
