Re: LDAP

From: Frank Gruman <fgatwork_at_verizon.net>
Date: 2006-09-11 18:33:24 CEST

Snay, Marc wrote:
>
> Hi,
>
>
>
> I am a new subscriber to the mailing list, so please forgive me if
> this has been solved before...
>
>
>
> I am trying to configure my Subversion 1.3 running on Ubuntu 6.06 to
> use LDAP authentication. I have found a couple of sites through
> Google that offer how-to's on this, but none of them have solved my
> problem yet. I have also run my configuration and resulting error
> message through our 'LDAP gurus' and all I get back is 'sorry, I don't
> know anything about Subversion' or 'sorry, I don't know anything about
> DAV'.
>
>
>
> The error message I get is:
>
>
>
> [Mon Aug 21 15:08:41 2006] [warn] [client xxx.xxx.xxx.xxx] [18875]
> auth_ldap authenticate: user xxx authentication failed; URI
> /svn/!svn/act/4630029f-3bd4-b14f-9fe5-4bb880f9ebdf [LDAP:
> ldap_simple_bind_s() failed][Invalid credentials]
>
>
>
> Here is a snippet of my apache2 conf file that deals with setting up
> the /Location
>
>
>
> <Location /svn>
>
> DAV svn
>
> SVNPath /repository
>
> AuthType Basic
>
> Options Indexes FollowSymLinks
>
> AllowOverride None
>
> order allow,deny
>
> allow from all
>
> AuthName "SVN Repository"
>
> AuthLDAPURL "ldap://servername.company.com:389/"
>
> AuthLDAPBindDN "CN=authorized_user_name,CN=Users,DC=company_name,DC=com"
>
> AuthLDAPBindPassword "xxxxx"
>
> <LimitExcept GET PROPFIND OPTIONS REPORT>
>
> Require valid-user
>
> </LimitExcept>
>
> </Location>
>
>
>
> My problem might be specific to my company in the CN and DC names, but
> I've run those be multiple people internally and they feel that all of
> that information is correct. Based on the ldap_simple_bind_s() error
> message, I'm not even sure it's getting to that point before failing.
>
>
>
> Any ideas?
>
>
>
> Thanks,
>
> Marc
>
Your AuthLDAPURL is not complete. You need to stretch it all the way
out, including specifying what value to search for and do authentication
against.

Here is just the LDAP portion of my configuration :
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL
ldap://my.domain.int:3268/dc=my,dc=domain,dc=int?sAMAccountName??(objectClass=*)
AuthLDAPBindDN "CN=ldap_user,OU=CS Users,OU=CS,DC=my,DC=domain,DC=int"
AuthLDAPBindPassword passwd_without_quotes_or_spaces

Note - I am using my global catalog port rather than the LDAP port
because there is a separate issue with references in LDAP that affects me.

Regards,
Frank
Received on Mon Sep 11 19:29:37 2006

This message: [ Message body ]
Next message: Erik Huelsmann: "Re: what's the meaning of the numbers in CHANGELOG?"
Previous message: Frank Gruman: "Re: easiest version of linux for subversion"
In reply to: Snay, Marc: "LDAP"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]