Active-Directory

小號橢圓形___小號這l在和dSolved將 apache 2.4 與 LDAP 身份驗證一起使用時發生內部錯誤 500

  • May 13, 2016

我有一個配置了 SVN 伺服器的 CentOS 7 伺服器,我有另一個帶有 LDAP 的 windows 伺服器 2012R2,我用於域控制器。我可以使用 ldapsearch 與 windows 伺服器通信。

那麼我現在的問題是,當我嘗試通過瀏覽器登錄 svn 伺服器時,無論我輸入什麼,它都會出現內部錯誤(500)。

錯誤資訊是:

[Thu May 12 13:27:36.786664 2016] [authz_core:debug] [pid 10377] mod_authz_core.c(809): [client 1.1.1.1:50409] AH01626: authorization result of Require valid-user : denied (no authenticated user yet)
[Thu May 12 13:27:36.786695 2016] [authz_core:debug] [pid 10377] mod_authz_core.c(809): [client 1.1.1.1:50409] AH01626: authorization result of <RequireAny>: denied (no authenticated user yet)
[Thu May 12 13:27:36.786732 2016] [authnz_ldap:debug] [pid 10377] mod_authnz_ldap.c(501): [client 1.1.1.1:50409] AH01691: auth_ldap authenticate: using URL ldap://a-d01:389/,dc=a,dc=domain,dc=com?sAMAccountName?sub?(ObjectClass=*)
[Thu May 12 13:27:36.787048 2016] [ldap:debug] [pid 10377] util_ldap.c(372): AH01278: LDAP: Setting referrals to On.
[Thu May 12 13:27:36.874625 2016] [authnz_ldap:info] [pid 10377] [client 1.1.1.1:50409] AH01695: auth_ldap authenticate: user svnuser authentication failed; URI /repo [ldap_search_ext_s() for user failed][Invalid DN syntax]

正如錯誤所說,DN語法似乎存在錯誤:

[Thu May 12 13:27:36.874625 2016] [authnz_ldap:info] [pid 10377] [client 1.1.1.1:50409] AH01695: auth_ldap authenticate: user svnuser authentication failed; URI /repo [ldap_search_ext_s() for user failed][Invalid DN syntax]

根據錯誤日誌,您使用了“ldap://a-d01:389/,dc=a,dc=domain,dc=com”我猜它應該是“ldap://a-d01:389/dc= a,dc=domain,dc=com" 代替。

[Thu May 12 13:27:36.786732 2016] [authnz_ldap:debug] [pid 10377] mod_authnz_ldap.c(501): [client 1.1.1.1:50409] AH01691: auth_ldap authenticate: using URL ldap://a-d01:389/,dc=a,dc=domain,dc=com?sAMAccountName?sub?(ObjectClass=*)
[Thu May 12 13:27:36.787048 2016] [ldap:debug] [pid 10377] util_ldap.c(372): AH01278: LDAP: Setting referrals to On.

引用自:https://serverfault.com/questions/776273