>> But It still lets people in instead of sending a 401 page.
>
> Weird on a few fronts, are you sure this log entry corresponds to the 200?
Triple checking.. You're right It "just bloody works".
> 1) "AuthzLDAPAuthoritative off" means you should see "declining to
> authorise" instead of "author
On Sat, Dec 6, 2008 at 1:51 AM, Jesper Krogh <[EMAIL PROTECTED]> wrote:
> On Fri, Dec 5, 2008 at 11:48 PM, Eric Covener <[EMAIL PROTECTED]> wrote:
>> On 12/5/08, Jesper Krogh <[EMAIL PROTECTED]> wrote:
>>
>>> Require ldap-group CN=TestGroup,OU=Groups,OU=Company
>>> r
On Fri, Dec 5, 2008 at 11:48 PM, Eric Covener <[EMAIL PROTECTED]> wrote:
> On 12/5/08, Jesper Krogh <[EMAIL PROTECTED]> wrote:
>
>> Require ldap-group CN=TestGroup,OU=Groups,OU=Company
>> require valid-user
>
> Require directives are OR'ed not AND'ed, despite the way
On 12/5/08, Jesper Krogh <[EMAIL PROTECTED]> wrote:
> Require ldap-group CN=TestGroup,OU=Groups,OU=Company
> require valid-user
Require directives are OR'ed not AND'ed, despite the way "require" sounds.
--
Eric Covener
[EMAIL PROTECTED]
-
Hi.
I'm trying to get a setup working where kerberos does authentication
and ldap does authorization based on an Active Directory group.
Alone the kerberos stuff works excellent. Even with a "Require group
something" from a group file.
But going to the LDAP configuration something goes wrong:
-
