Searching child OU's for authentication

[Josh Miller]

Having implemented a similar configuration, I have encountered the same 
limitation that you refer to.  I am unable to authenticate users who are 
outside of a single top-level OU in AD.  Any users anywhere in that one 
OU that I specify have no problems authenticating but that is where it 
stops.

Thanks,
--
Joshua M. Miller, RHCE


Bliss, Aaron wrote:
> Hi everyone,
> I have a quick question on apache configuration when attempting to
> authenticate against Active Directory; the following configuration works
> great for users that are in the Test OU, however it doesn't seem to work
> for users that are in an OU below the Test OU; is there any way to
> configure apache to search recursively in the AD ldap domain until it
> finds and answer?  Thanks very much for your help.
> 
> Aaron
> 
> <directory /var/www/html/chat1>
> AuthType Basic
> AuthName "authorization required"
> AuthLDAPBindDN cn=servicacct,ou=Service-Users,dc=preferredcare,dc=org
> AuthLDAPBindPassword servicepass
> AuthLDAPURL
> "ldap://dc1.preferredcare.org:389/ou=Test,dc=preferredcare,dc=org?sAMAcc
> ountName?sub?(objectClass=*)"
> #require user awb
> require group cn=testgroup1,ou=Groups,dc=preferredcare,dc=org
> </directory>
> 
> Confidentiality Notice:
> The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information.  If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited.  If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.
>