Apache LDAP Authentication

Comments 7

OK, I've searched all day and followed every guide I can and I'm still not getting anywhere with this.

I'm running:
RHEL 7.4
httpd 2.4.6-67
mod_ldap 2.4.6-67

and no matter what I put in the config for ldap I get the same error:
AH00526: Syntax error on line 8 of /etc/httpd/conf.modules.f/ldap.conf:
Unknown Authn provider: ldap

the offending config file is here:

SetHandler ldap-status
Require host internal.domain

Satisfy any
AuthType Basic
AuthName "LDAP/AD Authentication"
AuthBasicProvider ldap
AuthLDAPURL "ldap://hostname/dc=internal,dc=domain?uid?one"
Require valid-user

I've tried in the vhost config and in the above ldap config and get the same error.

Against better judgement I also disabled selinux (setenforce 0) but to no avail.

Any thoughts anybody?

Andy

Started 2018-02-15T06:26:08+00:00 by

Andy Fry

Community Member 29 points

Responses

Guru 1450 points

15 February 2018 6:56 AM

Siem Korteweg

Did you check https://stackoverflow.com/questions/26476853/apache-2-4-and-ldap?

"Do you have LoadModule authnz_ldap_module modules/mod_authnz_ldap.so and LoadModule ldap_module modules/mod_ldap.so?"

AF Community Member 29 points

15 February 2018 9:41 PM

Andy Fry

Hi Siem,

It's my understanding that mod_authnz_ldap has been rolled up into mod_ldap now. I can find no reference to it on my Satellite 6.2 server in any channel. Having said that I do have mod_ldap.so and mod_authnz_ldap.so do exist in /etc/httpd/modules

Andy

AF Community Member 29 points

15 February 2018 10:15 PM

Andy Fry

Hi Siem,

Fixed it!!

So the modules were installed but the ldap.load in /etc/conf.modules.d only referenced the mod_ldap.so and not "LoadModule authnz_ldap_module modules/mod_authnz_ldap.so".

Thanks for pointing me in the right direction.

Andy

Guru 6222 points

15 February 2018 9:51 PM

ir. Jan Gerrit Kootstra

Community Leader

Hello Andy,

In my Satellite looking for the mod_ldap rpm it shows the following repository name for RHEL 7:

repo

Red Hat Enterprise Linux 7 Server - Optional RPMs x86_64 7Server

product

Red Hat Enterprise Linux Server

repo-id

rhel-7-server-optional-rpms

Regards,

Jan Gerrit

AF Community Member 29 points

15 February 2018 10:08 PM

Andy Fry

Hi Jan, Yep, I have mod_ldap installed, it was the reference to mod_authnz_ldap that I don't have. Andy

Guru 6222 points

15 February 2018 10:25 PM

ir. Jan Gerrit Kootstra

Community Leader

Hi Andy,

I see Siem and you fixed the issue. So I stop quering my Satellite. Success.

Some of my colleagues want to apply the same technique. Could you share the config lines that you added to get it to work?

Regards,

Jan Gerrit

AF Community Member 29 points

15 February 2018 10:50 PM

Andy Fry

Hi Jan,

I simply added: LoadModule authnz_ldap_module modules/mod_authnz_ldap.so

to /etc/httpd/conf.modules.d/ldap.load

Hope that works for you too.

Andy

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

Responses