Author Login •
Post Reply
Hi Gurus,
I have a subversion server that authenticates with windows ad and i
want to cache my authentication for better performance.
here's my setting:
LoadModule authnz_ldap_module
/usr/lib/apache2-prefork/mod_authnz_ldap.so
LoadModule ldap_module /usr/lib/apache2-prefork/mod_ldap.so
LDAPTrustedMode SSL
LDAPVerifyServerCert off
LDAPSharedCacheSize 500000
LDAPCacheEntries 1024
LDAPCacheTTL 43200
LDAPOpCacheEntries 1024
LDAPOpCacheTTL 43200
LDAPSharedCacheFile /srv/home/svn/ldap_cache
LDAPConnectionTimeout 10
<Location /ldap-status>
SetHandler ldap-status
Order allow,deny
Allow from all
</Location>
LDAPTrustedClientCert CERT_BASE64 /etc/apache2/ssl.crt/ad1.cer
LDAPTrustedClientCert CERT_BASE64 /etc/apache2/ssl.crt/ad2.cer
<Location /unix-repo>
DAV svn
SVNPath /srv/svn/unix-repo
AuthName "Please use your ACTIVE DIRECTORY for Authentication"
AuthType Basic
AuthBasicProvider ldap
AuthzLDAPAuthoritative off
Include /etc/apache2/.ldapbinddn
AuthLDAPURL "ldaps://172.23.12.137
172.23.12.136:636/DC=domain,DC=local?sAMAccountName?sub?(objectClass=user)"
SSLRequireSSL
AuthzSVNAccessFile /srv/config/svn_acl/unix-repo
Require valid-user
SVNPathAuthz off
</Location>
Browsing https://localhost/ldap-status show an empty LDAP Cache Information
Can anyone help me, what's missing?
Thanks,
West
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@(protected)
" from the digest: users-digest-unsubscribe@(protected)
For additional commands, e-mail: users-help@(protected)
