This section describes how to configure LDAP to protect files on IBM HTTP Server.
The LoadModule directive for LDAP is not loaded into IBM HTTP Server by default. Without the LoadModule directive, the LDAP features are not available for use. In order to enable the LDAP function, add a LoadModule directive to the IBM HTTP Server httpd.conf file as follows:
LoadModule ibm_ldap_module modules/IBMModuleLDAP.dll
LoadModule ibm_ldap_module modules/mod_ibm_ldap.so
If you have the LDAP client installed on your computer, you can use ldapsearch as a tool to test the values you intend to use for the various settings.
See LDAP directives to obtain detailed descriptions of the LDAP (mod_ibm_ldap) directives.
Searches that use the mod_ibm_ldap directives maintain a pool of server connections that authenticate as the ldap.application.dn user. The first connection is created when the first LDAP-protected request is received. Connections will be held open a specified number of seconds (ldap.idleConnection.timeout) for subsequent searches on that connection or connections for other requests.
If you are reading logs or looking at an IP trace, the following sequence of events should occur: