Re: [Fwd: Apache::AuthenNTLM]

Fri, 09 Jan 2004 13:16:06 -0800

Hi!

Sorry for not getting back sooner!! We have been busy getting to know our 2 month old baby :)


when i do change PerlSetVar ntlmdebug to 2 than i get this

[20641] AuthenNTLM: Config Domain = xxx pdc = XX100A bdc = XX0001
[20641] AuthenNTLM: Config Default Domain = XXX
[20641] AuthenNTLM: Config Fallback Domain =
[20641] AuthenNTLM: Config AuthType = ntlm AuthName = testntlm
[20641] AuthenNTLM: Config Auth NTLM = 1 Auth Basic = 0
[20641] AuthenNTLM: Config NTLMAuthoritative = on BasicAuthoritative = on
[20641] AuthenNTLM: Config Semaphore key = 23754 timeout = 2
[20641] AuthenNTLM: Authorization Header <not given>
[Tue Jan 6 13:43:19 2004] [error] access to /ntlm/ failed for , reason:
Bad/Missing NTLM/Basic Authorization Header for /ntlm/
[20642] AuthenNTLM: Config Domain = xxx pdc = XX100A bdc = XX0001
[20642] AuthenNTLM: Config Default Domain = XXX
[20642] AuthenNTLM: Config Fallback Domain =
[20642] AuthenNTLM: Config AuthType = ntlm AuthName = testntlm
[20642] AuthenNTLM: Config Auth NTLM = 1 Auth Basic = 0
[20642] AuthenNTLM: Config NTLMAuthoritative = on BasicAuthoritative = on
[20642] AuthenNTLM: Config Semaphore key = 23754 timeout = 2
[20642] AuthenNTLM: Authorization Header NTLM
TlRMTVNTUAABAAAAB7IAAAMAAwAmAAAABgAGACAAAABXUzAxODVSWkc=
[20642] AuthenNTLM: Got: 78 84 76 77 83 83 80 0 1 0 0 0 7 178 0 0 3 0 3 0
38 0 0 0 6 0 6 0 32 0 0 0 87 83 48 49 56 53 82 90 71
[20642] AuthenNTLM: protocol=NTLMSSP, type=1,
flags1=7(NEGOTIATE_UNICODE,NEGOTIATE_OEM,REQUEST_TARGET),
flags2=178(NEGOTIATE_ALWAYS_SIGN,NEGOTIATE_NTLM), domain length=3, domain
offset=38, host length=6, host offset=32, host=WS0185, domain=XXX
[20642] AuthenNTLM: Connect to pdc = XX100A bdc = XX0001 domain = xxx
[20642] AuthenNTLM: timed out while waiting for lock (key = 23754)

Looks like the ntlmsemtimeout isn't long enough...

=head2 PerlSetVar ntlmsemtimout

This set the timeout value used to wait for the semaphore. The default is two seconds.
It is very small because during the time Apache waits for the semaphore, no other
authentication request can be sent to the windows server. Also Apache::AuthenNTLM
only asks the windows server once per keep-alive connection, this timeout value
should be as small as possible.

Try increasing that and see if that helps.

speeves
cws


--
Reporting bugs: http://perl.apache.org/bugs/
Mail list info: http://perl.apache.org/maillist/modperl.html

Reply via email to