mod_authz_ldap

Not Rated
Description
This Apache LDAP authentication/authorization module tries to solve the following problems that other such modules may not solve in all cases:

1. Map the short form of the distinguished name of a certificate and its
issuer obtained from the environment of mod_ssl to a user distinguished
name in an LDAP directory.

2. Check the age of a password in an LDAP directory, denying authorization in
case the password is to old.

3. Authorize a user based on roles or an arbitrary LDAP filter expression.

4. Authorize a user based on whether he owns a file or belongs to the group
owning a file. The module can perform an ordinary LDAP authentication
using an LDAP bind call, but is incapable of verifying an SHA1 or crypt
password hash from the directory, as mod_auth_ldap can.

The module also tries to do reduce LDAP connection overhead by caching a connection between requests (one per server record). This is most likely to improve performance in the case of certificate authentication, as for basic authentication a bind to the directory on a new connection is necessary with every request. Future development may add a cache to improve performance.

This package provides the module for Apache 2.0 server.
Interface: Plug-in
Associated Programs
Apache2 Apache HTTP Server metapackage
libapache-mod-authz-ldap-tools Tools for mod_authz_ldap Apache module
Available deb Repositories (how-to add a respository)
Debian 32-bit
experimental 0.26-1

Rating: Not Rated (0 votes)


Login or Register to rate mod_authz_ldap, add a Tag, or designate as an alternative to a Windows app



Upload Screenshots
Images must be in GIF, JPG, or PNG formats and can be no larger than 2 MB. Only one file can be uploaded at a time. A description can be included, but it is optional.
Desc:
File:
You must login or register to upload a screenshot.
Submit Web Links
Submit the title and link (including http://) to an article pertaining to mod_authz_ldap and it will appear in the Web Links section of the right banner. Contact us here if an entry needs to be removed.
Title:
Link:
You must login or register to post links.

Write a Review

  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
More information about formatting options