Apache 2.4.53 获取 AH00027:未进行身份验证,但如果没有对 /CN=XXXX 进行身份验证,则不允许请求。身份验证未配置?

tag-icon tag-icon apache-2.4 httpd
Apache 2.4.53 获取 AH00027:未进行身份验证,但如果没有对 /CN=XXXX 进行身份验证,则不允许请求。身份验证未配置?

我们有一个 Apache 2.4.53,当他们尝试访问它时,我们看到 500 错误,并且在 error_log 文件中出现以下内容:

[Thu Jan 25 23:56:22.600893 2024] [core:error] [pid 24313:tid 140492557752064] [client 172.31.xx.yy:39564] AH00027: No authentication done but request not allowed without authentication for /CN=XXXX.... Authentication not configured?

ssl.conf 设置了 VirtualHost:

<VirtualHost *:7513>
  SSLEngine on
  SSLCompression off
  SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
  SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-GCM-SHA256:AES256+EDH:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4:!NULL:!3DES
  SSLHonorCipherOrder on
.
.
  SSLVerifyClient require
  SSLVerifyDepth  10
  SSLOptions +ExportCertData +StdEnvVars +LegacyDNStringFormat
  DocumentRoot "/apps/aaa/bbb"
  ServerName sim.foo.com
  ServerAlias sim.foo.com
  ScriptAlias /rest/users "/apps/aaa/bbb/test7.pl"
  <Directory "/apps/aaa/bbb">
    Allow from all
  </Directory>

  <Location /rest>
    AuthType None
    Require all granted
  </Location>
</VirtualHost>

我不明白为什么我们会收到这个错误,因为和 <Location /rest> 似乎应该允许访问,但我对这个特定的系统也不太熟悉,所以我希望有人可以指出我可能出了什么问题以及如何解决问题?

谢谢,吉姆

EDIT1:添加 apachectl -S 和 apachectl -t 输出:

[root@simfed01 conf]# /apps/products/apache/2.4.53/bin/apachectl -S
VirtualHost configuration:
ServerRoot: "/apps/products/apache/2.4.53"
Main DocumentRoot: "/apps/products/apache/2.4.53/htdocs"
Main ErrorLog: "/apps/products/apache/2.4.53/logs/error_log"
Mutex ssl-cache: using_defaults
Mutex default: dir="/apps/products/apache/2.4.53/logs/"     mechanism=default
Mutex rewrite-map: using_defaults
Mutex ssl-stapling-refresh: using_defaults
Mutex ssl-stapling: using_defaults
PidFile: "/apps/products/apache/2.4.53/logs/httpd.pid"
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
User: name="orcladmin" id=2008
Group: name="orcladmin" id=4503

[root@simfed01 conf]# /apps/products/apache/2.4.53/bin/apachectl -t
Syntax OK

相关内容