Otdfbt

Did war bonds have better investment alternatives during WWII?

What does the black goddess statue do and what is it?

France's Public Holidays' Puzzle

TV series episode where humans nuke aliens before decrypting their message that states they come in peace

Why is water being consumed when my shutoff valve is closed?

How do I deal with an erroneously large refund?

What do you call an IPA symbol that lacks a name (e.g. ɲ)?

How can I wire a 9-position switch so that each position turns on one more LED than the one before?

Suing a Police Officer Instead of the Police Department

Married in secret, can marital status in passport be changed at a later date?

Is there a verb for listening stealthily?

Why did Europeans not widely domesticate foxes?

What is a 'Key' in computer science?

Why I cannot instantiate a class whose constructor is private in a friend class?

Why does Java have support for time zone offsets with seconds precision?

Retract an already submitted Recommendation Letter (written for an undergrad student)

How to translate "red flag" into Spanish?

Determinant of a matrix with 2 equal rows

What is the numbering system used for the DSN dishes?

When does Bran Stark remember Jamie pushing him?

When speaking, how do you change your mind mid-sentence?

Is a self contained air-bullet cartridge feasible?

Was there ever a LEGO store in Miami International Airport?

Why would the Overseers waste their stock of slaves on the Game?

Kerberos + LDAP in Apache httpd - ObjectSID

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

0

I am doing LDAP authorization along with Kerberos authentication in httpd 2.4. I am retrieving objectSID from ldap and found that to be not in readable format.

Referring this and this, have used a ReWriteMap to use that script to decode objectSid asRewriteRule .* - [E=SID:$SIDConvert:%AUTHORIZE_objectSide]. AUTHORIZE_objectSid is what I got from LDAP query. But output I got is S-1-0-0-0-0.

1. 
   

   I have tested the script alone with value, it is producing the correct result.

   
   
   

   Input : AQUAAAAAAAUVAAAAkuA8d4B49TEjX2Nr4tAJAA==

   
   
   

   Output : S-1-5-21-2000478354-838170752-1801674531-643298

   
   



2. Passed hard coded value from ldap query, it is producing the correct result.



3. Passing the dynamic value - producing as above. S-1-0-0-0-0.

So my guess is that the value coming from ldap is not in expected format. How to know/debug that? Any ideas/references would be much appreciated..

apache-2.4 ldap httpd.conf

share

edited Apr 17 at 11:23

Anitha.R

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  You say you "used a ReWriteMap" and even "pass dynamic value", but the link you've posted says nothing about it. Care to edit your question and add more details? And welcome to the site.
  
  – kubanczyk
  Apr 17 at 11:03
  

  
  
  
  

 | 

0

I am doing LDAP authorization along with Kerberos authentication in httpd 2.4. I am retrieving objectSID from ldap and found that to be not in readable format.

Referring this and this, have used a ReWriteMap to use that script to decode objectSid asRewriteRule .* - [E=SID:$SIDConvert:%AUTHORIZE_objectSide]. AUTHORIZE_objectSid is what I got from LDAP query. But output I got is S-1-0-0-0-0.

1. 
   

   I have tested the script alone with value, it is producing the correct result.

   
   
   

   Input : AQUAAAAAAAUVAAAAkuA8d4B49TEjX2Nr4tAJAA==

   
   
   

   Output : S-1-5-21-2000478354-838170752-1801674531-643298

   
   



2. Passed hard coded value from ldap query, it is producing the correct result.



3. Passing the dynamic value - producing as above. S-1-0-0-0-0.

So my guess is that the value coming from ldap is not in expected format. How to know/debug that? Any ideas/references would be much appreciated..

apache-2.4 ldap httpd.conf

share

edited Apr 17 at 11:23

Anitha.R

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  You say you "used a ReWriteMap" and even "pass dynamic value", but the link you've posted says nothing about it. Care to edit your question and add more details? And welcome to the site.
  
  – kubanczyk
  Apr 17 at 11:03
  

  
  
  
  

 | 

I am doing LDAP authorization along with Kerberos authentication in httpd 2.4. I am retrieving objectSID from ldap and found that to be not in readable format.

Referring this and this, have used a ReWriteMap to use that script to decode objectSid asRewriteRule .* - [E=SID:$SIDConvert:%AUTHORIZE_objectSide]. AUTHORIZE_objectSid is what I got from LDAP query. But output I got is S-1-0-0-0-0.

1. 
   

   I have tested the script alone with value, it is producing the correct result.

   
   
   

   Input : AQUAAAAAAAUVAAAAkuA8d4B49TEjX2Nr4tAJAA==

   
   
   

   Output : S-1-5-21-2000478354-838170752-1801674531-643298

   
   



2. Passed hard coded value from ldap query, it is producing the correct result.



3. Passing the dynamic value - producing as above. S-1-0-0-0-0.

So my guess is that the value coming from ldap is not in expected format. How to know/debug that? Any ideas/references would be much appreciated..

apache-2.4 ldap httpd.conf

share

edited Apr 17 at 11:23

Anitha.R

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share

edited Apr 17 at 11:23

Anitha.R

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share

edited Apr 17 at 11:23

Anitha.R

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked Apr 17 at 7:59

Anitha.RAnitha.R

12

New contributor

Anitha.R is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked Apr 17 at 7:59

Anitha.RAnitha.R

12