Hi trawick, thanks for your quick reply. 1) I do have require valid-user, i forgot to paste it. 2) I do have the prompt, once i submit, i got the internal error. 3)Here is my error.log / access.log with stock apache build:
Error.log ------------------ [Sun Feb 15 11:16:42 2009] [info] mod_unique_id: using ip addr 192.168.2.52 [Sun Feb 15 11:16:43 2009] [info] Init: Seeding PRNG with 136 bytes of entropy [Sun Feb 15 11:16:43 2009] [info] Init: Generating temporary RSA private keys (512/1024 bits) [Sun Feb 15 11:16:43 2009] [info] Init: Generating temporary DH parameters (512/1024 bits) [Sun Feb 15 11:16:43 2009] [warn] Init: Session Cache is not configured [hint: SSLSessionCache] [Sun Feb 15 11:16:43 2009] [info] Init: Initializing (virtual) servers for SSL [Sun Feb 15 11:16:43 2009] [info] mod_ssl/2.2.9 compiled against Server: Apache/2.2.9, Library: OpenSSL/0.9.8a [Sun Feb 15 11:16:43 2009] [info] APR LDAP: Built with Sun Microsystems Inc. LDAP SDK [Sun Feb 15 11:16:43 2009] [info] LDAP: SSL support unavailable: LDAP: ldapssl_client_init() failed. [Sun Feb 15 11:16:43 2009] [info] mod_unique_id: using ip addr 192.168.2.52 [Sun Feb 15 11:16:44 2009] [info] Init: Seeding PRNG with 136 bytes of entropy [Sun Feb 15 11:16:44 2009] [info] Init: Generating temporary RSA private keys (512/1024 bits) [Sun Feb 15 11:16:44 2009] [info] Init: Generating temporary DH parameters (512/1024 bits) [Sun Feb 15 11:16:44 2009] [info] Init: Initializing (virtual) servers for SSL [Sun Feb 15 11:16:44 2009] [info] mod_ssl/2.2.9 compiled against Server: Apache/2.2.9, Library: OpenSSL/0.9.8a [Sun Feb 15 11:16:44 2009] [notice] Digest: generating secret for digest authentication ... [Sun Feb 15 11:16:44 2009] [notice] Digest: done [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1854): proxy: grabbed scoreboard slot 0 in child 23317 for worker proxy:reverse [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1967): proxy: initialized single connection worker 0 in child 23317 for (*) [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1854): proxy: grabbed scoreboard slot 0 in child 23318 for worker proxy:reverse [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1873): proxy: worker proxy:reverse already initialized [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1967): proxy: initialized single connection worker 0 in child 23318 for (*) [Sun Feb 15 11:16:44 2009] [notice] Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8a DAV/2 configured -- resuming normal operations [Sun Feb 15 11:16:44 2009] [info] Server built: Oct 14 2008 02:23:10 [Sun Feb 15 11:16:44 2009] [debug] prefork.c(1001): AcceptMutex: fcntl (default: fcntl) [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1854): proxy: grabbed scoreboard slot 0 in child 23319 for worker proxy:reverse [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1873): proxy: worker proxy:reverse already initialized [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1967): proxy: initialized single connection worker 0 in child 23319 for (*) [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1854): proxy: grabbed scoreboard slot 0 in child 23320 for worker proxy:reverse [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1873): proxy: worker proxy:reverse already initialized [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1967): proxy: initialized single connection worker 0 in child 23320 for (*) [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1854): proxy: grabbed scoreboard slot 0 in child 23321 for worker proxy:reverse [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1873): proxy: worker proxy:reverse already initialized [Sun Feb 15 11:16:44 2009] [debug] proxy_util.c(1967): proxy: initialized single connection worker 0 in child 23321 for (*) [Sun Feb 15 11:17:08 2009] [debug] mod_authnz_ldap.c(377): [client 192.168.4.117] [23320] auth_ldap authenticate: using URL ldap://192.168.2.50/ou=people,dc=domain,dc=com [Sun Feb 15 11:17:08 2009] [warn] [client 192.168.4.117] [23320] auth_ldap authenticate: user tlvenn authentication failed; URI / [LDAP: ldap_simple_bind_s() failed][Can't connect to the LDAP server] Acces.log ------------------- 192.168.4.117 - - [15/Feb/2009:11:18:01 +0800] "GET / HTTP/1.1" 401 401 192.168.4.117 - tlvenn [15/Feb/2009:11:18:10 +0800] "GET / HTTP/1.1" 500 536 on the slapd server, i launched it with -d -1 (all debug messages) with slapd -d -1 revelant slapd output ---------------------------- daemon: activity on 1 descriptor >>> slap_listener(ldap:///) daemon: listen=8, new connection on 12 daemon: added 12r (active) listener=0 conn=0 fd=12 ACCEPT from IP=192.168.2.52:34221 (IP=0.0.0.0:389) daemon: select: listen=7 active_threads=0 tvp=NULL daemon: select: listen=8 active_threads=0 tvp=NULL daemon: activity on 1 descriptor daemon: activity on: 12r daemon: read activity on 12 connection_get(12) connection_get(12): got connid=0 connection_read(12): checking for input on id=0 ber_get_next ldap_read: want=8, got=0 ber_get_next on fd 12 failed errno=0 (Error 0) connection_read(12): input error=-2 id=0, closing. connection_closing: readying conn=0 sd=12 for close connection_close: conn=0 sd=12 daemon: removing 12 conn=0 fd=12 closed (connection lost) 4) my LDAP server allow anonymous binds for sure, i have a java web app running on the same zone which connects to the ldap server just fine using anonymous binds. >From what i can tell, it looks like a protocol error ("ldap_read: want=8, >got=0") It's really weird it's working for you just fine out of the box, damn i dont have that luck :) -- This message posted from opensolaris.org
