[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Apache2.2 + LDAP + SVN not actively authenticating

From: Bradley Wagner <bradley.wagner_at_hannonhill.com>
Date: 2006-12-18 21:58:36 CET

I'm having a hella of a time getting this to work. I'll admit that I
know very little about LDAP/AD but the file seems so easy:

<Location /svn/>
     DAV svn
     SVNParentPath /usr/local/svn/repos
     SVNListParentPath on
     AuthzSVNAccessFile /usr/local/svn/conf/svn-access-file
     SSLRequireSSL
     AuthType Basic
     AuthName "Our SVN"

     AuthBasicProvider ldap
     AuthzLDAPAuthoritative Off
     AuthLDAPURL ldap://ourip:389/OU=Employees,DC=company,DC=com?
sAMAccountName
     AuthLDAPBindDN "CN=Bradley Wagner,OU=Employees,DC=company,DC=com"
     AuthLDAPBindPassword ######

     Require valid-user
</Location>

I've changed some of the critical pieces of information as to hide
them but that's basically it. I'm authenticating against an AD server
running on windows server 2000. Basically, no matter what username/
password I put in, it's *ALWAYS* authenticating the user. Has anyone
seen this before?

I was concerned that my query was incorrect, but I've tried in a
number of external tools and seems fine. I turned off
AuthzLDAPAuthortiative because I'm using "require valid-user" and not
one of the ldap specific ones.

Anyone see any problems with this? I have tried doing the same auth-
ing in a separate <location> that is not using SVN at all and am
getting the same results (any user/pass will be allowed in).

Bradley

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Dec 18 21:59:24 2006

This is an archived mail posted to the Subversion Users mailing list.