Re: Searching child OU's for authentication

Having implemented a similar configuration, I have encountered the same limitation that you refer to. I am unable to authenticate users who are outside of a single top-level OU in AD. Any users anywhere in that one OU that I specify have no problems authenticating but that is where it stops.

Thanks,
--
Joshua M. Miller, RHCE


Bliss, Aaron wrote:
Hi everyone,
I have a quick question on apache configuration when attempting to
authenticate against Active Directory; the following configuration works
great for users that are in the Test OU, however it doesn't seem to work
for users that are in an OU below the Test OU; is there any way to
configure apache to search recursively in the AD ldap domain until it
finds and answer? Thanks very much for your help.

Aaron

<directory /var/www/html/chat1>
AuthType Basic
AuthName "authorization required"
AuthLDAPBindDN cn=servicacct,ou=Service-Users,dc=preferredcare,dc=org
AuthLDAPBindPassword servicepass
AuthLDAPURL
"ldap://dc1.preferredcare.org:389/ou=Test,dc=preferredcare,dc=org?sAMAcc
ountName?sub?(objectClass=*)"
#require user awb
require group cn=testgroup1,ou=Groups,dc=preferredcare,dc=org
</directory>

Confidentiality Notice:
The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information. If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited. If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

Relevant Pages

  • Re: Basic Authentication + IIS 5 + Windows 2000 + Frontpage 2002 = failure?
    ... This posting is provided “AS IS” with no warranties, and confers no rights. ... |> In my setup, I cannot log in to the local computer, only the domain. ... |>> extra bit added to the configuration of this puzzle, ... |>> authenticate, and can use the local administrator account to ...
    (microsoft.public.inetserver.iis.security)
  • Re: Wireless network w/ SBS
    ... actual do authenticate prior to log in but very late in the start up ... the computer certificate is not installed properly, ... policies are user lever. ... I document are in "Computer Configuration" and NONE of them are in "User ...
    (microsoft.public.windows.server.sbs)
  • ypldap Client - Automatic Home Directory Creation
    ... I've successfully configured OpenBSD to allow users to authenticate against Novell eDirectory via ypldap. ... It works great, *however*, the creation of the user's home directories is still manual. ... (Below is our configuration in case it helps someone else attempting something similar:) ...
    (comp.unix.bsd.openbsd.misc)
  • ssh from user to RBAC role
    ... viable configuration? ... the role yet ssh fails to authenticate using the keys ... Yet ssh fails from user to role, am I missing something here or is it ... Although we routinely screen for viruses, ...
    (SunManagers)
  • Authenticating using lower case domain/realm
    ... I have successfully configured ubuntu machines to authenticate to a active ... directory running windows 2k. ... The realm is ... krb5-config 1.19 Configuration files for Kerberos Version 5 ...
    (comp.protocols.kerberos)