FAQ
Hello,

I am using httpd 2.2.19 running on Windows Server 2008. I am authenticating
with ldap against Windows Active Directory. It will work fine for a while.
Sometimes a day. Sometimes a week. And then I will start getting the following

log message (server names, user names, etc have been changed).

[Mon Oct 17 02:35:35 2011] [debug] mod_authnz_ldap.c(403): [client
192.168.111.111] [3444] auth_ldap authenticate: using URL
ldap://ldap.mydomain.com/DC=mydomain,DC=com?sAMAccountName?sub?(objectClass=user)


[Mon Oct 17 02:35:36 2011] [info] [client 192.168.111.111] [3444] auth_ldap
authenticate: user username authentication failed; URI /aaa/bbb
[ldap_search_ext_s() for user failed][Operations Error]

I have tried searching for similar cases, but I couldn't find any other cases
where it works fine for a while and then stops working. Does anyone have any
idea of what could be causing this?

Thanks!

-J

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Search Discussions

  • Mr Jerry J at Nov 15, 2011 at 2:01 pm
    Hello,

    I have upgraded to httpd 2.2.21, but am still having the same problem. Does
    anyone have any ideas on why LDAP authentication against Active Directory works
    fine for a while and then stops working, giving the error message below?

    Thanks,
    J



    ----- Original Message ----
    From: Mr Jerry J <jerryj22@yahoo.com>
    To: users@httpd.apache.org
    Sent: Mon, October 17, 2011 2:31:15 PM
    Subject: [users@httpd] ldap authentication works for a while then starts failing

    Hello,

    I am using httpd 2.2.19 running on Windows Server 2008. I am authenticating
    with ldap against Windows Active Directory. It will work fine for a while.
    Sometimes a day. Sometimes a week. And then I will start getting the following



    log message (server names, user names, etc have been changed).

    [Mon Oct 17 02:35:35 2011] [debug] mod_authnz_ldap.c(403): [client
    192.168.111.111] [3444] auth_ldap authenticate: using URL
    ldap://ldap.mydomain.com/DC=mydomain,DC=com?sAMAccountName?sub?(objectClass=user)




    [Mon Oct 17 02:35:36 2011] [info] [client 192.168.111.111] [3444] auth_ldap
    authenticate: user username authentication failed; URI /aaa/bbb
    [ldap_search_ext_s() for user failed][Operations Error]

    I have tried searching for similar cases, but I couldn't find any other cases
    where it works fine for a while and then stops working. Does anyone have any
    idea of what could be causing this?

    Thanks!

    -J

    ---------------------------------------------------------------------
    The official User-To-User support forum of the Apache HTTP Server Project.
    See <URL:http://httpd.apache.org/userslist.html> for more info.
    To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
    " from the digest: users-digest-unsubscribe@httpd.apache.org
    For additional commands, e-mail: users-help@httpd.apache.org

    ---------------------------------------------------------------------
    The official User-To-User support forum of the Apache HTTP Server Project.
    See <URL:http://httpd.apache.org/userslist.html> for more info.
    To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
    " from the digest: users-digest-unsubscribe@httpd.apache.org
    For additional commands, e-mail: users-help@httpd.apache.org
  • William A. Rowe Jr. at Nov 15, 2011 at 3:28 pm

    On 11/15/2011 8:00 AM, Mr Jerry J wrote:
    Hello,

    I have upgraded to httpd 2.2.21, but am still having the same problem. Does
    anyone have any ideas on why LDAP authentication against Active Directory works
    fine for a while and then stops working, giving the error message below?
    Can't tell you for certain, but I would expect that [Operations Error]
    didn't map to a non-recoverable state code, and guess that ldap session
    caching wasn't flushed.

    Once it 'stops working', all LDAP auth attempts fail, even attempting
    to authenticate a not-seen-yet new user?

    ---------------------------------------------------------------------
    The official User-To-User support forum of the Apache HTTP Server Project.
    See <URL:http://httpd.apache.org/userslist.html> for more info.
    To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
    " from the digest: users-digest-unsubscribe@httpd.apache.org
    For additional commands, e-mail: users-help@httpd.apache.org
  • Eric Covener at Nov 15, 2011 at 3:53 pm
    I think sometimes a packet capture shows some extended error text in
    the LDAP response?

    ---------------------------------------------------------------------
    The official User-To-User support forum of the Apache HTTP Server Project.
    See <URL:http://httpd.apache.org/userslist.html> for more info.
    To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
    " from the digest: users-digest-unsubscribe@httpd.apache.org
    For additional commands, e-mail: users-help@httpd.apache.org

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupusers @
categoriesapache
postedOct 17, '11 at 7:31p
activeNov 15, '11 at 3:53p
posts4
users3
websitehttpd.apache.org
irc#httpd

People

Translate

site design / logo © 2022 Grokbase