Feature #2294
closedadd ldap referrals support
Description
For AD ldap_search_s has failed with Operation error. For resolve this problem need set LDAP_OPT_REFERRALS to off.
May be this case need set by config? I don't know.
Files
Updated by kace almost 14 years ago
Has anyone verified this patch yet? I would like to give it a try, but I'm not really in a testing environment. Thanks.
Updated by dridri over 13 years ago
- File mod_auth.patch mod_auth.patch added
it didn't worked for me, no idea why exactly.
The issue i observed was that ldap_search_s was chasing referrals by binding anonymously (and my AD server doesn't allow it)
If it's any help: i used ldap_set_rebind_proc to force openldap to re-bind with ldap_simple_bind_s (and the correct binddn/bindpw), for thoses interested, i attached the patch i did even if i'm unsure it is bugless.
Updated by stbuehler over 13 years ago
- Subject changed from ldap auth failed for Active Directory to add ldap referrals support
- Target version changed from 1.4.29 to 1.4.x
Updated by gstrauss over 8 years ago
- Status changed from Patch Pending to Need Feedback
There are two patches here. Is there anyone else who can confirm that one or both of these patches work?
The second patch, using ldap_set_rebind_proc() appears to be the better idea.
The first patch, to disable LDAP_OPT_REFERRALS might not be needed if ldap_set_rebind_proc() solution works. If it doesn't, then disabling LDAP_OPT_REFERRALS should be a config option.
Either way, this ticket needs some feedback from people actively using lighttpd with LDAP to make sure we get this right. Please post if either of these patches work for you. Thanks.
Updated by gstrauss over 8 years ago
- Tracker changed from Bug to Feature
Changing to feature request. Still requires feedback.
Tangentially related ticket https://redmine.lighttpd.net/issues/2464 "patch for intermittent ldap failures" might reduce the occurrence of the errors here, too.
Updated by gstrauss over 8 years ago
- Status changed from Need Feedback to Missing Feedback
Updated by gstrauss almost 7 years ago
- Related to Bug #2846: LDAP authentication vs. AD: problems with referrals added
Also available in: Atom