有人可以告诉我我的反向代理设置有什么问题吗?我可以成功使用 ldap 进行身份验证,但我只得到 Apache2 默认页面
我尝试将 ProxyPass 和 ProxyPassReverse 设置放入 Location 块中,但在启动 Apache 时出现以下错误
ProxyPass|ProxyPassMatch 在定义时不能有路径 位置
我正在遵循 Arkime 指南 https://arkime.com/faq#how-do-i-proxy-arkime-using-apache
<VirtualHost *:443>
ServerName test-arkime.domain.com
SSLEngine on
SSLCertificateFile "/opt/arkime/etc/test-arkime.crt"
SSLCertificateKeyFile "/opt/arkime/etc/test-arkime.key"
ProxyPass /arkime/ http://localhost:8005/ retry=0
ProxyPassReverse /arkime/ http://localhost:8005/
RequestHeader set ARKIME_USER %{REMOTE_USER}e
<Directory />
Order allow,deny
Allow from all
AuthType Basic
AuthName "Enter account credentials"
Require valid-user
AuthBasicProvider ldap
AuthLDAPGroupAttribute member
AuthLDAPSubGroupClass group
AuthLDAPGroupAttributeIsDN On
AuthLDAPURL ldap://ldap.domain.com:389/OU=USERS,DC=domain,DC=com?sAMAccountName?sub?(objectClass=*)
AuthLDAPBindDN [email protected]
AuthLDAPBindPassword password123
require ldap-group "CN=Users,OU=IT Users,OU=Security,OU=Groups,OU=CORP,DC=domain,DC=com"
</Directory>
ProxyPreserveHost On
</VirtualHost>
我刚刚获得 Apache2 默认页面
弄清楚了大部分内容,我现在可以点击 Arkime,我现在只需要弄清楚为什么它无法识别或可能无法通过 arkime_user
{"success":false,"text":"未找到用户"}
<VirtualHost *:443>
ServerName test-arkime.domain.com
SSLEngine on
SSLCertificateFile "/opt/arkime/etc/test-arkime.crt"
SSLCertificateKeyFile "/opt/arkime/etc/test-arkime.key"
# redirect from root to subdirectory
RedirectMatch ^/$ /arkime/
<Location /arkime/>
Order allow,deny
Allow from all
AuthType Basic
AuthName "Enter account credentials"
Require valid-user
ProxyPass "http://localhost:8005/" retry=0
ProxyPassReverse "http://localhost:8005/"
RequestHeader set ARKIME_USER %{REMOTE_USER}e
ProxyPreserveHost On
AuthBasicProvider ldap
AuthLDAPGroupAttribute member
AuthLDAPSubGroupClass group
AuthLDAPGroupAttributeIsDN On
AuthLDAPURL ldap://ldap.domain.com:389/OU=com,DC=domain,DC=com?sAMAccountName?sub?(objectClass=*)
AuthLDAPBindDN [email protected]
AuthLDAPBindPassword Password123
require ldap-group "CN=Users,OU=IT Users,OU=Security,OU=Groups,OU=com,DC=domain,DC=com"
</Location>
</VirtualHost>
我也遇到了同样的问题。你找到设置反向代理的解决方案了吗