webDAV + LDAP problem (nie wiem gdzie)

horizn · Post autor: **horizn** » 05 września 2014, 12:38

jest sobie serwer, ktory bezproblemowo poprzez LDAP przepuszcza userow logujacych sie przez SSH do AD na Win2k8. W ten sposob wpuszcza tez przez proftpd. mam jednak problem z wpuszczeniem uzytkownikow przez DAV-a i nie wiem gdzie moze byc problem.
konfiguracja apache:

Kod: Zaznacz cały

<VirtualHost support-release2.domena.com:80>
        ServerName support-release2
        HostnameLookups Off
        UseCanonicalName Off
        ServerSignature Off
        DocumentRoot /data/releases

        ErrorLog "/var/log/apache2/releases-error.log"
        CustomLog "/var/log/apache2/releases-access.log" common
        TransferLog "/var/log/apache2/releases-transfer.log"

        BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
        BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
        BrowserMatch "Microsoft-WebDAV-MiniRedir/5.1.2600" redirect-carefully
        BrowserMatch "^WebDrive" redirect-carefully
        BrowserMatch "^WebDAVFS" redirect-carefully

        <IfModule mod_headers.c>
                Header add MS-Author-Via "DAV"
        </IfModule>

        <IfModule mod_encoding.c>
                EncodingEngine on
                NormalizeUsername on
        </IfModule>

        DavMinTimeout 600

        Alias /releases "/data/releases"
        <Location /releases>
                Options +Indexes
                IndexIgnore ..
                IndexOptions -IconsAreLinks NameWidth=* FancyIndexing SuppressLastModified FoldersFirst
                IndexOrderDefault Ascending Name
                Dav on
                AuthName "WEBDAV: insert your username and password"
                AuthType Basic
#               AuthBasicAuthoritative off
                AuthBasicProvider ldap
#               AuthzLDAPAuthoritative on
                AuthLDAPGroupAttributeIsDN off
                AuthLDAPGroupAttribute memberUid
                AuthLDAPURL ldap://10.171.3.56/cn=LDAPsearch,dc=domena,dc=com?uid?sub
                AuthLDAPBindDN cn=LDAPsearch,cn=Users,dc=domena,dc=com
                AuthLDAPBindPassword Haslo
                Require ldap-group cn=LDAPsearch,cn=users,dc=domena,dc=com
                Require ldap-attribute gidNumber=100
        </Location>
</VirtualHost>

logi z bledami:

Kod: Zaznacz cały

[Fri Sep 05 11:14:49 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases
[Fri Sep 05 11:15:45 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases/ldap-status
[Fri Sep 05 11:16:49 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases
[Fri Sep 05 11:18:16 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases
[Fri Sep 05 11:19:01 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases
[Fri Sep 05 11:20:28 2014] [error] [client 10.172.2.204] user user_z_AD not found: /releases

gdzie 10.172.2.204 to IP serwera.

dzialajacy konfig z proftpd:

Kod: Zaznacz cały

LDAPServer ldap://10.171.3.56/
LDAPBindDN "cn=LDAPsearch,dc=domena,dc=com" "Haslo"
LDAPUsers dc=users,dc=aminocom,dc=com (uid=%u) (uidNumber=%u)

jakies pomysly? bo mi sie skonczyly.