Hi,
I use on a deprecated machine with apache 2.2 the radius_auth_module and authz_ldap_module authentication modules and it works well together.
I had compiled mod_auth_radius-1.5.8 and I use mod_authz_ldap-0.26-16
My conf looks like:
<AuthnProviderAlias ldap myldap>
AuthLDAPBindDN ...
AuthLDAPBindPassword ...
AuthLDAPURL ...
</AuthnProviderAlias>
<IfModule mod_auth_radius-2.0.c>
AddRadiusAuth ...
AddRadiusCookieValid 5
</IfModule>
<Directory /var/www/html/private>
AuthType Basic
AuthBasicProvider myldap radius
AuthRadiusAuthoritative on
Require valid-user
</Directory>
Now after having upgraded the private application on a new machine with apache 2.4, I try to do the same thing.
If I only use mod_authnz_ldap, the authentication works as expected.
I have compiled and installed mod_auth_radius-1.6.0, but when this module is loaded, the authnz_ldap_module does not work again.
If mod_auth_radius is loaded before authnz_ldap_module, and if I want to authenticate with LDAP, I get an 401 Unauthorized page
If mod_auth_radius is loaded after authnz_ldap_module, and whatever the identifiant, the authentication is a success.
I don't know if radius works at this step, since it must be tested by an another person, but I can conclude that mod_auth_radius is not compatible with authnz_ldap_module.
It also seems that mod_auth_radius is no longer maintained.
Could this ever be fixed or is it worth less if I abandon radius for apache and just keep ldap?
Thank you for your opinion.
Regards
Hi,
I use on a deprecated machine with apache 2.2 the radius_auth_module and authz_ldap_module authentication modules and it works well together.
I had compiled mod_auth_radius-1.5.8 and I use mod_authz_ldap-0.26-16
My conf looks like:
Now after having upgraded the private application on a new machine with apache 2.4, I try to do the same thing.
If I only use mod_authnz_ldap, the authentication works as expected.
I have compiled and installed mod_auth_radius-1.6.0, but when this module is loaded, the authnz_ldap_module does not work again.
If mod_auth_radius is loaded before authnz_ldap_module, and if I want to authenticate with LDAP, I get an 401 Unauthorized page
If mod_auth_radius is loaded after authnz_ldap_module, and whatever the identifiant, the authentication is a success.
I don't know if radius works at this step, since it must be tested by an another person, but I can conclude that mod_auth_radius is not compatible with authnz_ldap_module.
It also seems that mod_auth_radius is no longer maintained.
Could this ever be fixed or is it worth less if I abandon radius for apache and just keep ldap?
Thank you for your opinion.
Regards