Forcing Group Authentication in Apache on NetWare

  • 3613231
  • 05-Feb-2007
  • 26-Apr-2012


Novell Apache on NetWare 6.5


This document describes implementing LDAP authentication for web services.


  1. Open the SYS:/Apache2/conf/httpd.conf file.
  2. Locate the directory block desired to be protected. Each directory may have it's own
  3. Inside of this directory block (between the "" and "" tags), add the lines that turn on authentication :

    AuthType Basic
    AuthName "Protected"
    require group cn=group,o=novell
    AuthLDAPAuthoritative On
    AuthLDAPGroupAttribute member
    AuthLDAPURL ldaps://localhost/o=novell?cn?sub

  4. Change the group to the group that is required for authentication (the "require group" line above).
  5. Change the hostname to an appropriate LDAP server (or leave as"localhost" if this server will also act as the LDAP server) on the AuthLDAPURL line.
  6. Set the "o=novell" to an appropriate base DN on the AuthLDAPURL line.
  7. Restart Apache. If apache does not start, check the SYS:/Apache2/logs files for specific reasons, and correct the errors. Restart apache again.
  8. Test the authentication. If authentication fails, change the LogLevel to "debug" instead of "warn" in the httpd.conf file and restart. Watch the latest error log when authenticating to see the reasons why.

Additional Information

It may be necessary to add public access to the group and it's member attributes, as well as access to the CN or UID attributes of the users who will be authenticating.