mod_ldap mod_auth_ldap using SSL failes

Forum Moderators: bakedjake

Message Too Old, No Replies

mod_ldap mod_auth_ldap using SSL failes

Using a LDAP directory to authenticate Apacher users

tlw1000

11:11 pm on Jul 28, 2005 (gmt 0)

I am using mod_ldap and mod_auth_ldap that work just fine without SSL. When I try to use SSL I get "[ldap_simple_bind_s() failed] [Can't contact LDAP server]". (Setting LogLevel to "debug" give me this message.) I assume from the error message that the problem occures some where in the LDAP/SSL libraries/modules.

I am using SuSE 9.2 and Apache 2.0.50 with up-to-date patches.

The questions I have are:
1. What is going on and how do I fix it?
2. How do I turn on debug/trace to get useful information from these lower level (LDAP/SSL) libraries/modules so I can find out what is going on?

MattyMoose

11:35 pm on Jul 28, 2005 (gmt 0)

Is the LDAP server running in SSL mode? Is it listening on the proper port? (Port 636, IIRC). It may be that the server doesn't support SSL.

tlw1000

8:26 pm on Jul 29, 2005 (gmt 0)

I captured the TCP/IP packets while mod_ldap is accessing the directory and SSL is starting up but seems to quit after a few messages are exchanged (several messages after the server sends it's certificate to the client). This is why I want to see trace/debug messages at the SSL/LDAP libray/module level. I can't seen to find any way to tell me what is going on at this level. No logs, no messages, etc. I just get the "[ldap_simple_bind_s() failed]..." message in the Appache log file. (not very helpful.)