First of all, I'm really sorry to be posting this question to web2py-
users. I know it's really an Apache configuration question, but I'm
hoping someone here might be able to help.
I have LDAP authentication against our Active Directory server working
in my web2py apps. The configuration was very easy and it worked
almost right out of the box:
from gluon.contrib.login_methods.ldap_auth import ldap_auth
auth.settings.login_methods.append(ldap_auth(mode='ad',
server='acfmsdc02.gpo.gov',
base_dn='dc=gpo,dc=gov'))
However, I can't get Apache to authenticate against the AD server.
Here are the relevant configuration directives:
AuthBasicProvider ldap
AuthType Basic
AuthzLDAPAuthoritative on
AuthName "PED LDAP Test"
AuthLDAPURL "ldap://acfmsdc02.gpo.gov:3268/DC=gpo,DC=gov?
sAMAccountName?sub?(objectClass=*)" NONE
I get an internal server error when I try to reach any pages covered
by the LDAP authentication directives. After setting "LogLevel info" I
can see "auth_ldap authenticate: user USERNAME authentication failed;
URI / [ldap_search_ext_s() for user failed][Operations error]" in my
error log.
Are there any Apache gurus out there who might be able to provide the
Apache equivalent of the working web2py configuration settings? It
seems like it should be simple, but I have been googling and
restarting httpd for hours with no luck.
Again, many apologies for posting an Apache question in the web2py
group. It's just that it's working under web2py, and I've had no luck
finding more information elsewhere.
Thanks,
Nick
