thilly
02.09.03, 12:45
Hallo ich möchte meinen Apache mit LDAP "absichern".
Dazzu habe ich folgendes gemacht:
- mittels YAST auth_ldap (LDAP Modul für APache) installiert
- http.conf geändert
- restart apache
nun startst apache nicht mehr! FM:
***
mylinux:/usr/lib64/apache # rcapache restart
Shutting down httpd done
Starting httpd [ PERL PHP4 ]
Syntax error on line 499 of /etc/httpd/httpd.conf:
Invalid command 'LDAP_Server', perhaps mis-spelled or defined by a module not included in the server configuration failed
mylinux:/usr/lib64/apache #
*****
könnt Ihr mir helfen?
Das habe ich in der http.conf geändert:
****
LoadModule auth_ldap_module /usr/lib64/apache/auth_ldap.so
und
<Directory "/cust/cim/htdocs">
#
# This may also be "None", "All", or any combination of "Indexes",
# "Includes", "FollowSymLinks", "ExecCGI", or "MultiViews".
#
# Note that "MultiViews" must be named *explicitly* --- "Options All"
# doesn't give it to you.
#
Options Indexes -FollowSymLinks +Includes MultiViews
#
# This controls which options the .htaccess files in directories can
# override. Can also be "All", or any combination of "Options", "FileInfo",
# "AuthConfig", and "Limit"
#
AllowOverride None
#
# Controls who can get stuff from this server.
#
Order allow,deny
Allow from all
# LDAP for this dir inserted by t.Mendorf
AuthName "LDAP_userid_password_required"
AuthType Basic
<Limit GET PUT POST DELETE PROPFIND PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>
Require valid-user
</Limit>
LDAP_Server 10.1.1.100
LDAP_Port 389
Base_DN "o=ROOT"
UID_Attr uid
# LDAP end
#
# disable WebDAV by default for security reasons.
#
<IfModule mod_dav.c>
DAV Off
</IfModule>
#
# Enable SSI (Server Side Includes) for the demo index.html pages, as some of the content
# is created dynamically. This should be disabled when setting up a productive
# server.
<Files /cust/cim/htdocs/index.htm*>
Options -FollowSymLinks +Includes +MultiViews
</Files>
#
# Protect the php3 test page, so it cannot be viewed from an outside system.
#
<Files test.php3>
Order deny,allow
deny from all
allow from localhost
</Files>
</Directory>
Dazzu habe ich folgendes gemacht:
- mittels YAST auth_ldap (LDAP Modul für APache) installiert
- http.conf geändert
- restart apache
nun startst apache nicht mehr! FM:
***
mylinux:/usr/lib64/apache # rcapache restart
Shutting down httpd done
Starting httpd [ PERL PHP4 ]
Syntax error on line 499 of /etc/httpd/httpd.conf:
Invalid command 'LDAP_Server', perhaps mis-spelled or defined by a module not included in the server configuration failed
mylinux:/usr/lib64/apache #
*****
könnt Ihr mir helfen?
Das habe ich in der http.conf geändert:
****
LoadModule auth_ldap_module /usr/lib64/apache/auth_ldap.so
und
<Directory "/cust/cim/htdocs">
#
# This may also be "None", "All", or any combination of "Indexes",
# "Includes", "FollowSymLinks", "ExecCGI", or "MultiViews".
#
# Note that "MultiViews" must be named *explicitly* --- "Options All"
# doesn't give it to you.
#
Options Indexes -FollowSymLinks +Includes MultiViews
#
# This controls which options the .htaccess files in directories can
# override. Can also be "All", or any combination of "Options", "FileInfo",
# "AuthConfig", and "Limit"
#
AllowOverride None
#
# Controls who can get stuff from this server.
#
Order allow,deny
Allow from all
# LDAP for this dir inserted by t.Mendorf
AuthName "LDAP_userid_password_required"
AuthType Basic
<Limit GET PUT POST DELETE PROPFIND PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>
Require valid-user
</Limit>
LDAP_Server 10.1.1.100
LDAP_Port 389
Base_DN "o=ROOT"
UID_Attr uid
# LDAP end
#
# disable WebDAV by default for security reasons.
#
<IfModule mod_dav.c>
DAV Off
</IfModule>
#
# Enable SSI (Server Side Includes) for the demo index.html pages, as some of the content
# is created dynamically. This should be disabled when setting up a productive
# server.
<Files /cust/cim/htdocs/index.htm*>
Options -FollowSymLinks +Includes +MultiViews
</Files>
#
# Protect the php3 test page, so it cannot be viewed from an outside system.
#
<Files test.php3>
Order deny,allow
deny from all
allow from localhost
</Files>
</Directory>