Subversion Server Using Active Directory error
up vote
0
down vote
favorite
I am using apache subversion running on linux 7. from front end i am using tortoise svn. I am trying to integrate my subversion with current AD. For which i have opened /etc/httpd/conf.d directory and given below details in subversion.conf file. Details are mentioned below
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
With above conf file details, when i am trying open the folders under /u01/ciroot/subversion, i am prompting the user password dialog box but when giving correct user of this group, it is not authenticating and giving below error
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error log.
But when i am editing this file as below then it is working fine.
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
Can someone please help me where i am getting wrong when adding group it is failing.
Regards
linux svn active-directory ldap subversion-edge
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
add a comment |
up vote
0
down vote
favorite
I am using apache subversion running on linux 7. from front end i am using tortoise svn. I am trying to integrate my subversion with current AD. For which i have opened /etc/httpd/conf.d directory and given below details in subversion.conf file. Details are mentioned below
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
With above conf file details, when i am trying open the folders under /u01/ciroot/subversion, i am prompting the user password dialog box but when giving correct user of this group, it is not authenticating and giving below error
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error log.
But when i am editing this file as below then it is working fine.
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
Can someone please help me where i am getting wrong when adding group it is failing.
Regards
linux svn active-directory ldap subversion-edge
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
add a comment |
up vote
0
down vote
favorite
up vote
0
down vote
favorite
I am using apache subversion running on linux 7. from front end i am using tortoise svn. I am trying to integrate my subversion with current AD. For which i have opened /etc/httpd/conf.d directory and given below details in subversion.conf file. Details are mentioned below
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
With above conf file details, when i am trying open the folders under /u01/ciroot/subversion, i am prompting the user password dialog box but when giving correct user of this group, it is not authenticating and giving below error
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error log.
But when i am editing this file as below then it is working fine.
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
Can someone please help me where i am getting wrong when adding group it is failing.
Regards
linux svn active-directory ldap subversion-edge
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
I am using apache subversion running on linux 7. from front end i am using tortoise svn. I am trying to integrate my subversion with current AD. For which i have opened /etc/httpd/conf.d directory and given below details in subversion.conf file. Details are mentioned below
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
With above conf file details, when i am trying open the folders under /u01/ciroot/subversion, i am prompting the user password dialog box but when giving correct user of this group, it is not authenticating and giving below error
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error log.
But when i am editing this file as below then it is working fine.
<location /svn>
DAV svn
SVNParentPath /u01/ciroot/subversion
AuthType Basic
AuthBasicProvider ldap
AuthName "Root Repo"
AuthLDAPURL "ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*))"
AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=MACGROUP,DC=LOCAL"
AuthLDAPBindPassword welcome123@
Require valid-user
</location>
Can someone please help me where i am getting wrong when adding group it is failing.
Regards
linux svn active-directory ldap subversion-edge
linux svn active-directory ldap subversion-edge
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
edited Nov 11 at 21:04
Gabriel Luci
8,55411122
8,55411122
asked Nov 11 at 12:44
Amit Prasad
13
asked Nov 11 at 12:44
Amit Prasad
13
asked Nov 11 at 12:44
Amit Prasad
13
13
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
up vote
1
down vote
There is a parenthesis missing in the LDAP filter. Each attr=value pair needs to be enclosed in parenthesis. The string should read:
"ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" None
Replacing the "None" with "STARTTLS" if you want to encrypt the communication after connection. I generally start with clear text & get everything else sorted before moving over to an encrypted connection. Then any failure can be isolated to certificate/trust issues.
I would expect the clear text LDAP port to be 389 ... but if authentication is working without the filter, then there must be an unusual port mapping / port bound to the directory service.
If authentication still fails, you might try capturing the network traffic to your LDAP server on the specified port. This will show you the exact LDAP query that is being made and the response from the directory server.
answered Nov 11 at 14:29
LisaJ
523111
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
|
show 2 more comments
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
1
down vote
There is a parenthesis missing in the LDAP filter. Each attr=value pair needs to be enclosed in parenthesis. The string should read:
"ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" None
Replacing the "None" with "STARTTLS" if you want to encrypt the communication after connection. I generally start with clear text & get everything else sorted before moving over to an encrypted connection. Then any failure can be isolated to certificate/trust issues.
I would expect the clear text LDAP port to be 389 ... but if authentication is working without the filter, then there must be an unusual port mapping / port bound to the directory service.
If authentication still fails, you might try capturing the network traffic to your LDAP server on the specified port. This will show you the exact LDAP query that is being made and the response from the directory server.
answered Nov 11 at 14:29
LisaJ
523111
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
|
show 2 more comments
up vote
1
down vote
There is a parenthesis missing in the LDAP filter. Each attr=value pair needs to be enclosed in parenthesis. The string should read:
"ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" None
Replacing the "None" with "STARTTLS" if you want to encrypt the communication after connection. I generally start with clear text & get everything else sorted before moving over to an encrypted connection. Then any failure can be isolated to certificate/trust issues.
I would expect the clear text LDAP port to be 389 ... but if authentication is working without the filter, then there must be an unusual port mapping / port bound to the directory service.
If authentication still fails, you might try capturing the network traffic to your LDAP server on the specified port. This will show you the exact LDAP query that is being made and the response from the directory server.
answered Nov 11 at 14:29
LisaJ
523111
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
|
show 2 more comments
up vote
1
down vote
up vote
1
down vote
There is a parenthesis missing in the LDAP filter. Each attr=value pair needs to be enclosed in parenthesis. The string should read:
"ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" None
Replacing the "None" with "STARTTLS" if you want to encrypt the communication after connection. I generally start with clear text & get everything else sorted before moving over to an encrypted connection. Then any failure can be isolated to certificate/trust issues.
I would expect the clear text LDAP port to be 389 ... but if authentication is working without the filter, then there must be an unusual port mapping / port bound to the directory service.
If authentication still fails, you might try capturing the network traffic to your LDAP server on the specified port. This will show you the exact LDAP query that is being made and the response from the directory server.
answered Nov 11 at 14:29
LisaJ
523111
There is a parenthesis missing in the LDAP filter. Each attr=value pair needs to be enclosed in parenthesis. The string should read:
"ldap://100.100.10.2:388/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" None
Replacing the "None" with "STARTTLS" if you want to encrypt the communication after connection. I generally start with clear text & get everything else sorted before moving over to an encrypted connection. Then any failure can be isolated to certificate/trust issues.
I would expect the clear text LDAP port to be 389 ... but if authentication is working without the filter, then there must be an unusual port mapping / port bound to the directory service.
If authentication still fails, you might try capturing the network traffic to your LDAP server on the specified port. This will show you the exact LDAP query that is being made and the response from the directory server.
answered Nov 11 at 14:29
LisaJ
523111
answered Nov 11 at 14:29
LisaJ
523111
answered Nov 11 at 14:29
LisaJ
523111
answered Nov 11 at 14:29
LisaJ
523111
523111
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
|
show 2 more comments
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
Hi LisaJ..thanks for replying. I added the paranthesis and also my port is 389, i was typed mistakenly to 388. But after i made changes on the suggestion you suggested and restarted the apache and now trying to access the repository. It is asking me for user password and when providing the user password i am getting below error
– Amit Prasad
Nov 12 at 7:37
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
error is Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error. More information about this error may be available in the server error log.
– Amit Prasad
Nov 12 at 7:40
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
i tried it with user part of this group but got error as below "AH01695: auth_ldap authenticate: user auser authentication failed; URI /svn/EBSRepo/ [LDAP: ldap_start_tls_s() failed][Connect error]" . This auser is there in LDAP but still i am getting this error. Any suggestion to this
– Amit Prasad
Nov 12 at 9:22
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
please share your observation on this
– Amit Prasad
Nov 13 at 8:36
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
Below is my subversion.conf file located in /etc/httpd/conf.d path<location /svn> DAV svn SVNParentPath /u01/ciroot/subversion AuthType Basic AuthBasicProvider ldap AuthName "Root Repo" AuthLDAPURL "ldap://ldap.server.com:389/DC=macgroup,DC=local?sAMAccountName?sub?(&(ObjectClass=*)(memberOf=CN=OBIEE_Admin,OU=OBIEE,OU=Security,OU=Groups,OU=Global Resources,DC=MACGROUP,DC=LOCAL))" STARTTLS AuthLDAPBindDN "CN=oidkerbt,OU=Service Accounts,OU=Users,OU=Global Resources,DC=macgroup,DC=local" AuthLDAPBindPassword password_of_ldap_server Require valid-user </location>
– Amit Prasad
Nov 13 at 8:37
|
show 2 more comments
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53248870%2fsubversion-server-using-active-directory-error%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
