LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat
User Name
Password
Red Hat This forum is for the discussion of Red Hat Linux.

Notices

Reply
 
Search this Thread
Old 04-04-2008, 11:13 AM   #1
adrianmarsh
LQ Newbie
 
Registered: Aug 2007
Posts: 4

Rep: Reputation: 0
RHEL5 to Windows CA, Apache2/LDAP BINDing


Hi All,

I'm trying to establish an LDAP over SSL connection to a Windows SBS 2003 server for domain authentication within an Apache server, so that when Browsers connect to the apache pages they have to enter a Domain password/account.

I have the basic LDAP client authentication and binding working, but not over SSL.

I've tested LDAP(ssl) from a PC client to the server and that works ok.

I know from Wireshark traces that the bind is failing, because of a "Unknown CA" error showing in the capture. This should be because the SBS server is self-signed, and the RHLE5 won't have the Root CA listed as an authority anywhere.

So I know I need to add the Root CA to the RHEL5 server somewhere, but I'm not sure where. As this involves Apache and ApacheLDAP modules, where does it go? or is there a more generic place that RHEL5 stores root certs (like Windows does in the registry) ?

After I get that working, then I'll need to add a certifcate to Apache (signed by the SBS Root CA) so that the Browser <> RHEL5 Apache connection can also be done over SSL, securing the whole path. But one problem at a time..

Any help appreciated.

Theres no Samba config implemented for this yet, and I hope I don't have to..

Thanks,

Adrian
 
Old 04-05-2008, 04:07 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966
well this won't really affect apache itself afaik. you're calling the ldap modules and they they dissapear off into openssl land... http://gagravarr.org/writing/openssl-certs/others.shtml
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LDAP binding error with Apache & Subversion rangel59 Linux - Software 16 03-18-2008 10:45 AM
RHEL5 ldap/pam client issue lokke Linux - Security 2 07-27-2007 08:52 AM
ctrl + alt + del binding in X windows azrael808 Linux - General 1 08-04-2006 09:49 PM
apache2 ldap hassan2 Suse/Novell 1 04-12-2006 08:12 AM
LDAP not binding shane200_ Suse/Novell 1 08-09-2005 10:56 AM


All times are GMT -5. The time now is 03:50 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration